Hi I’m Scott 👋

Network Defender, developer, speaker, writer, author of O’Reilly’s Intelligence Driven Incident Response, & SANS instructor. Bad guy catcher.

LLM SATs FTW

Practical experiments using LLMs for Structured Analytic Techniques in threat intelligence analysis.

May 23, 2025 · 10 min · Scott J Roberts

Security Talks in 2025

Modern security presentation development using Markdown, Slidev, and AI tools for efficient workflows.

May 22, 2025 · 14 min · Scott J Roberts

Effective Tagging in Synapse

Essential tagging patterns and best practices for Synapse threat intelligence platform workflows.

January 20, 2023 · 13 min · Scott J Roberts

The Difficulty of Saying Nothing

Like everyone else I’ve been following the tragic war in Ukraine and mourning the loss of life and humanitarian crisis. Professionally as an analyst in the threat intelligence and computer network defense world I’ve been considering what this war and spillover means for defending networks, especially as organizations like CISA keep putting out bulletins regarding threats of Russian nexus adversaries.

March 21, 2022 · 5 min · Scott J Roberts

Getting Started with Synapse

Complete beginner guide to installing and using Synapse threat intelligence platform with practical examples.

November 2, 2021 · 13 min · Scott J Roberts

Burnt TIPs

Analysis of threat intelligence sharing challenges using culinary metaphors and community dynamics.

July 31, 2021 · 7 min · Scott J Roberts

Blogging Again in 2021

Rebuilding a cybersecurity blog with modern open-source tools for speed, privacy, and control.

June 20, 2021 · 4 min · Scott J Roberts

zsh for Rational Mortals

Practical guide to switching from bash to zsh with setup tips and configuration recommendations.

June 5, 2019 · 5 min · Scott J Roberts

Building Better Security Presentations

Step-by-step process for building effective security presentations with focus on design and delivery.

October 27, 2017 · 24 min · Scott J Roberts

Crash Override Chronicles: Victim

Victim Sites & Technology So all of those things were term or bits about generalized grid operations.

August 31, 2017 · 2 min · Scott J Roberts