cR0w 
🏴☠️"AI is giving attackers a huge advantage!"
"Yes, it is. It's amazing how quickly it has destroyed dev, sec, ops, management, company missions and priorities, regulations, information literacy, and civil society, making everyone more vulnerable."
B'ad Samurai 🐐🇺🇦@cR0w 2026 Cybersecurity Priority List (according to LinkedIn)
AI
AI for Security
AI Security for AI
Agentic SOC
AI-SPM
CNAPP
CWPP
CSPM
CIEM
KSPM
DSPM
ASPM
.
.
.
Patch your shit
The fucking basics
@badsamurai Is asset inventory covered in "the fucking basics" or is it further down?
@cR0w I almost added but I think I blacked out
Scott Wilson@badsamurai @cR0w It’s absolutely mind-numbing to me, the orgs I encounter who don’t have a god damn asset inventory.
Rob O 
@scottwilson @badsamurai @cR0w I'll add another caveat: It's mindnumbing the number of orgs that want a pentest but don't have an inventory.
Phillip 
@nerdpr0f @scottwilson @badsamurai @cR0w The pen test they want:
“First, I sent out a spear phishing campaign and got a receptionist to download a malicious Word doc that installed a heavily-obfuscated RAT, giving me persistent remote access. From there, I used a 0-day vulnerability I discovered in Windows to move through the network, before using my custom 5p33d_h4x tool to take down your firewall. This allowed me carte blanche access to your databases, exfiltrating industry secrets, customer data, employee data, and financial records. You need to invest in AI-enabled firewalls from snorkblort with their new dynamic rules engine. That would have stopped me dead in my tracks.”
The pen test they need:
“I scanned the IPs on your company network by connecting to the free guest Wi-Fi, found all of your devices’ hostnames, open ports, OS version, and how outdated they all are, then put it all in a spreadsheet. Good luck”
Misuse Case