Damien’s Substack

Two Dudes and a GPU

Also known as: How AI-dependent operators have changed our threat model

Mar 10 • Damien Lewke

4

5

February 2026

“Signal to noise is a usefulness ratio.”

Signal to Noise: An Interview with Natasha Eastman, Head of Threat Intelligence at CoreWeave

Feb 18 • Damien Lewke

3

1

Claws for Concern

Why my puns aren’t the only thing to watch out for this week….

Feb 6 • Damien Lewke

8

2

5

January 2026

“Threat intelligence doesn’t fail because we lack data. It fails because we can’t decide what to ignore.”

Signal to Noise: An Interview with Ravi Thatavarthy, 4x CISO

Jan 29 • Damien Lewke

6

2

MITRE ER7 Eval Demystification Part 1: The Mental Model

Cloud's in - this will be good

Jan 20 • Damien Lewke

5

3

December 2025

“If everything is a priority, nothing is a priority.”

Signal to Noise: An Interview with Mark Hillick, CISO at Brex

Dec 17, 2025 • Damien Lewke

6

3

November 2025

“If you can use signal to noise to tell stories of winning, you make the job easier.”

Signal to Noise: An Interview with Jeannine, CISO at HealthEdge

Nov 18, 2025 • Damien Lewke

4

3

Vibe Hunting: Outcome-Driven Threat Hunting

Join the Hunt.

Nov 12, 2025 • Damien Lewke

12

1

8

“If it doesn’t measurably reduce risk or give my people time back, it’s noise.”

Signal to Noise: An Interview with Myke Lyons, CISO at Cribl

Nov 5, 2025 • Damien Lewke

8

7

October 2025

Hunting the Edge: Lessons from the F5 Breach

Why continuous hunting + smart use of your data > dumping all netflow logs to your SIEM

Oct 20, 2025 • Damien Lewke

12

9

Hunting Compressed Kill Chains

How we can use reasoning and behavior to outsmart faster attacks

Oct 9, 2025 • Damien Lewke

8

5

September 2025

Vibe Hacking: How Anthropic Just Made Threat Hunting Non-Negotiable

AI-generated attacks are not new, but the automation of killchains?

Sep 25, 2025 • Damien Lewke

16

1

12