Seven years inside offensive security - most days at IBM's Randori HOC, writing the Python that simulates real-world adversaries at enterprise scale.
I came up the long way: secure databases at Kore, then 150+ pentests at ML Labs, then a 1:1 MSc at NCI, and now I get to build the tools instead of just running them.
Building Python automation that simulates real adversary TTPs across IBM Randori's Recon and Attack platforms, integrated with IBM X-Force threat intelligence.
“Scanners catch maybe twenty percent of what matters. The rest needs a human who's read the RFC, patched a container breakout, or traced TCP flags at 2am. I do both.”
- SS, written somewhere over the Irish Sea, 2025
04 - a thing I made
Attack paths, visualised.
I built this little visualiser one weekend because I got tired of static MITRE diagrams. Three real-world attack chains. Hover a node.
If you're curious what I'm on this week - what I'm reading, the open threads in my notebook, the small experiments running on the side - there's a /now page for that. Updated more often than the rest of the site.