@sublime_sec TL;DR How to make ~90% similarity search Instead of one hash for a 100% match, 1. Use many min hashes (400-500) 2. Group those into a handful of big hashes (10-20) 3. Find an exact matching big hash to get close 4. Count matching small hashes to calculate similarity

I'm definitely feeling warm and fuzzy hashes this holiday season. Fast similarity is something that stumped me for a very long time, but MinHash turned out to be an elegant solution! Wrote up how to build it from scratch on the @sublime_sec blog

We’re excited to announce that Sublime has raised $150M in a Series C led by @Georgian_io, joined by new investors @Avenir_Growth, @01Advisors, @jonoberheide, and @nicoleperlroth, and existing investors @IndexVentures, @IVP, @slow, and @CitiVentures. This year we launched ASA

go get yourself some @MITREattack T1667 coverage

Introducing email bomb protection from Sublime: a powerful solution for automatically detecting, remediating, and triaging email bombs. In these attacks, an adversary will send hundreds or thousands of emails at once to flood an inbox and obfuscate the malicious intent. Learn how

this was a very cool problem to solve with @filar! It's such a natural evolution of the platform, which has been group-centric since day 1. Fellow nerds, look out for an engineering post about how "fuzzy" grouping works and the scaling+realtime challenges we had to overcome

if a rule is too complex to understand, the alert is even worse

don't practice Scanteria, just use our QRystal ball

I know it's a running joke about everyone boasting 100% MITRE Engenuity scores but please actually read the results, they provide a lot more nuance and insight into how the products performed and at what level of specificity

Happy to share what I've working on in the last year- Unveiling Elasticsearch Query Language (ES|QL)

Our DEF CON 31 workshop may be full, but there are some spots still available @BSidesLV on Aug 9. Come hunt for various email attack types in a lab environment w/ @jkamdjou and @ajpc500! https://t.co/scl43enzLN

🔊 New blog post: Part 2 of the “Creating a full-text search engine using PostgreSQL” series. In this one we are comparing the Postgres search functionality to Elasticsearch. https://t.co/8k9vY2WSsT

Much of modern ML engineering is making Python not be your bottleneck.

there's something ironic about a solicitor at your front door that's in the business of pest control.

I mean at least eyeOS

EyePad Pro

To be clear if you die wearing the vision pro you die in the real world.

https://t.co/XrkIVtYDiv

no need to worry about new .zip domains in an email body if you're rocking @sublime_sec. we already have logic for domain age checks, so you're set https://t.co/dnPsGTvOuG

so many stupid ideas