@secSandman

The Structural Conditions for Collective Intelligence

Building Enterprise SSO for my multi-tenant SaaS AI Agent platform

Mission-Critical IAM, Coding Agents and X-Agent Spec-Driven Collaboration

Kicking tires on “Spec” AI Development

Fresh Snow Outside, Fresh Threats Inside: Practical Agentic AI Hardening

Your AI Agent Is The Attacker – Claude, OpenCode – Threats and Security Designs

AI THREATS IN THE WILD In February 2026, the Cisco CX AI Tools team publicly flagged the popular OpenCode add-on oh-my-opencode after finding remote AI prompt injection in its installation guide. Their concern was not a theoretical bug but instead it was that an AI agent following the official instructions within source, could be manipulated…

by @s3cs&man March 11, 2026

Microsoft Ignite 2025: AI Security – tl;dr but RTFM

Microsoft Ignite 2025: Mapping the M365 + Azure Attack Surface to the New AI Security Stack I spent the part of a week reading through the Microsoft Ignite 2025 announcements and honestly? The trend is interesting. AI this, AI that. Instead of the usual marketing fluff about “unified platforms” and “AI-powered everything,” Microsoft actually dropped…

by @s3cs&man December 9, 2025December 10, 2025

Seeing the AI-Security Forest Through the Trees

A strategic look at adoption, exposure and what to do next … Executive take AI adoption is rising fastest in Software Engineering, Marketing/Sales, and Service/Customer Ops, while Finance/HR/Legal are catching up more cautiously. Globally, we’ve seen exponential innovation and patent filing of AI solutions. Exponential AI Innovation = Growing Attack Surface Source: Stanford “State of…

by @s3cs&man November 4, 2025November 4, 2025

Panel 1

Home

Is Claude Code Secure? Let’s Find Out!

AI RED TEAMING – man-in-the-vector Attack & custom Tooling

Vector Drift, Prompt Injection, and the Hidden RAG Attack Surface

Chaos, Complexity, and the Hidden Structure of Hash Functions in Proof-of-Work

Cooking with AI Agents: A Security Architect’s Guide to AI Threat Modeling & Design

tl;dr but RTFM Whether you’re building, breaking, or just beginning to explore AI security, one principle holds true: assume the guardrails will fail and architect as if your system already has a target on its back. Because it does. At this time, Meta’s LlamaFirewall is likely the most advanced publicly available GuardRail system incorporating both…

by @s3cs&man June 2, 2025June 9, 2025

From Known to Unknown: Shifting Cybersecurity to Proactive AI Detection

Introduction Everyday, Cyber Security teams are faced with a chicken-and-egg problem to detect and contain bad things. As I’ll discuss later in this article, it’s my belief that cyber teams shift allocation of resources to engineering of unsupervised anomaly detections to hunt for broader and deeper unknown threats. Threat Intelligence Teams and Red Teams alike…

by @s3cs&man January 6, 2025February 10, 2025

Panel 2 Placeholder

Panel 3 Placeholder

Panel 4 Placeholder