DevArmor @devarmorHQ
We automate threat modeling. AI-native. Dev-first. AppSec that keeps up with your shipping speed. devarmor.com San Francisco Joined August 2025-
Tweets65
-
Followers14
-
Following112
-
Likes104
"We do threat modeling." Translation: a PDF nobody's opened since the workshop. Our founder @kavousian unpacks the fix in Toreon's Threat Modeling Insider: a finding that can't fail a build is one the next pentest gets to find for you. toreon.com/threat-modelin…
@SaraDiscovers Start from console.log("Hello, World!");
We are here at @fwdcloudsec in #Bellevue. Right next to @AnthropicAI, table #14!
@myselfshubhendu CTM on this table is the one that matters most and gets the least attention. most teams pick a methodology and run it once. the ones that actually work make it continuous, tied to how the architecture changes not how the calendar moves. This is what we work on at DevArmor!
@SCAuditStudio @aviggiano @monad minimal prompts work when you're hunting known bug patterns. but for design-level flaws (broken access control, missing trust boundaries) the AI needs more context not less. it needs to understand the architecture. the prompt is basically the threat model.
@aviggiano @SCAuditStudio @monad @Fried_rice the threat modeling part is key. without it, AI agents just find the same implementation bugs scanners already catch. the design-level flaws (broken trust boundaries, missing auth paths) need business context that only a threat model provides. thats where the real signal is.
@marcobravoram @LinkedIn the rejected-alternatives section of the ADR is genuinely underrated. most threat models capture what you decided but not what you explicitly said no to.. that's usually where the real security reasoning lives. we think about this a lot at DevArmor.
Check out my latest article: 5 Practices for Threat Modeling at DevSecOps Speed linkedin.com/pulse/5-practi… via @LinkedIn
@Americanfort_io the attack didn't exploit a bug in the code. it exploited a gap in the design. no trust boundaries between what the agent received and what it could execute.. this is why we think threat modeling agents at design time isn't optional anymore.
@AndrewLarson17 @Americanfort_io this isnt an input validation failure. it's an architecture failure. the agent's trust model treated every input as instructions with full authority. no amount of input filtering fixes a design where the agent can't distinguish commands from data.
@nagarjuncreates @MarcelVelica Second that! We are building the AI-native control plane for AppSec Secure-by-design for the agentic era.
@alver1301 @dac_chain "quantum-proof" is a marketing property. not a security property. the right frame is exactly what you said: per-layer threat models with explicit assumptions about what holds today and what needs a migration path. most projects cant answer that honestly yet. Check out our work!
We are concluding penetration tests on @SpursOfficial trophy cabinet firewall. Good news: threat modeling suggests the assets inside have been air-gapped from the rest of the #EPL since 1961,so data loss risk remains completely negligible
@D1Olu @Arsenal big congrats to @Arsenal on the title. naturally we pivoted our pentest to @SpursOfficial trophy cabinet firewall.. threat modeling suggests the assets inside have been air-gapped from the #EPL since 1961, so data loss risk remains completely negligible
@avisre @kiransing @just_adev @levelsio @TermiusHQ glad someone said threat modeling and not just 'more tests.' tests validate the code does what you told it to. threat modeling validates you told it the right thing. when AI writes the code that's the part that matters most, and its where we focus @devarmorHQ
@RealJohnnyTime Well said! 'what assumption failed' is the most underrated question in security. controls and signals are implementation fixes. the assumption is the design mistake, and thats where the real money is lost every time. That's what we're trying to solve at DevArmor.
@studiojin_dev Check this blog post: devarmor.com/blog/what-you-…
@studiojin_dev the model dependence part is the real takeaway. rules give you structure but the ceiling is always how much context about the actual system the tool can work with.. curious how it handles business logic and auth flows vs code-level patterns. We have a blog post about this:
rosie @rosie0189125909
1 Followers 200 Following
Shesha @security_sesha
2K Followers 4K Following Speaker | Trainer - AppSec | OSWE | OSCP | CISSP. Tweets or likes are my bookmarks to access those on PC, mobile or in transit. https://t.co/pzKHcVpNhD
Bob Vasic @bobvasx
1K Followers 5K Following Software Architect CTO / Founder @RaptorLabsX | AI Security Solutions I AI-native Rapid SaaS I Blockchain Forensics I @anything Expert on @contra I @superteamie
adédayò • ajíbó... @D1Olu
330 Followers 309 Following Pilgrim || Husband | Father || Instant Coffee Addict || ....Christ in me, the hope of Glory.
Ashan @Ashan7631
246 Followers 1K Following Hunting airdrops & exploring Web3 | Sharing tips, rewards, and crypto adventures Building with @YOM_Official
Anne Yule @AnneYule1
2K Followers 3K Following
Total Postal @PostalTotal
117 Followers 431 Following Sweet dollar deals from the Steam sale; I play that. No-cam rockin' 2D pic; I stream that. Two and a half men; I weigh that. I'm not a gamer. Check me out!
Reza Khosravi @rezaSanFran
17 Followers 62 Following Founder at @Galliot_us, indy-documentary director & producer,
QinJiangbo @QinJiangbo
11 Followers 563 Following
Amir Kavousian @kavousian
191 Followers 263 Following Founder & CEO @DevArmorHQ , Automated Security Design Reviews & Enforcement @Stanford @CapitalOne @CoinList @altitude . I climb mountains & run marathons
bob_wood @bob_wood
34 Followers 70 Following
Nick Kirtley @nickkirt
2K Followers 5K Following Building stuff // threat modeling // build in public // https://t.co/dN6So1AVYq // https://t.co/qEbOuLR7PL
Armeiro @Armeiroio
0 Followers 2 Following
K (Khashayar) Mansour... @k_mansourizadeh
264 Followers 211 Following Building https://t.co/lIl0jd9X6h
Dmitriy Azarenko @CACandChill
27K Followers 14K Following CoFounder @TopTierAuth. Speaker, AI Advisor, 5x Founder, helping install AI agents for your business operations. Book on my calendar.
Bob Vasic @bobvasx
1K Followers 5K Following Software Architect CTO / Founder @RaptorLabsX | AI Security Solutions I AI-native Rapid SaaS I Blockchain Forensics I @anything Expert on @contra I @superteamie
Nagarjuna Creates @nagarjuncreates
288 Followers 216 Following AI Enthusiast | Sharing AI tools, workflows & insights | Helping creators, professionals, and businesses grow with AI | 📩 DM for collabs
Shesha @security_sesha
2K Followers 4K Following Speaker | Trainer - AppSec | OSWE | OSCP | CISSP. Tweets or likes are my bookmarks to access those on PC, mobile or in transit. https://t.co/pzKHcVpNhD
shubhendu shubham @myselfshubhendu
369 Followers 1K Following A child who survived after watching #BearGrylls shows ,Now he hunts #threat 🥷👾👺for Survival | @docker Captain,🐋 @hackthebox_eu #CTF Player 🧑🏻💻
adédayò • ajíbó... @D1Olu
330 Followers 309 Following Pilgrim || Husband | Father || Instant Coffee Addict || ....Christ in me, the hope of Glory.
Ashan @Ashan7631
246 Followers 1K Following Hunting airdrops & exploring Web3 | Sharing tips, rewards, and crypto adventures Building with @YOM_Official
JohnnyTime 🤓🔥 @RealJohnnyTime
13K Followers 1K Following Founder @ https://t.co/gcgrMm5l8P, JohnnyTime @ Youtube, Securing Web3 @ https://t.co/wJdpJyYK5y & https://t.co/3d9aL8nDvG
Rohan Takke @takkerohan97
362 Followers 548 Following Security Engineer | Security Architecture & Threat Modeling | DM for collabs I post Cybersecurity + Tech + AI insights
Rowan @knowRowan
3K Followers 1K Following I engage in dialogue with founders publicly to democratize startup knowledge | ex-google
Kirk Borne @KirkDBorne
485K Followers 3K Following Advisor to startups. Freelancer. @LeadershipData founder. Global Speaker. Top #B2B influencer & social promoter #DataScience #AI #ML. PhD Astrophysics @Caltech
Trail of Bits @trailofbits
38K Followers 260 Following We help secure the world’s most targeted organizations and products. We combine security research with an attacker mentality to reduce risk and fortify code.
Travis McPeak @travismcpeak
3K Followers 1K Following Security, mgmt, startups, investing, 🏋️♂️, 🚵. making AI dev secure @cursor, prev: Founder @Resourcely, @databricks, @netflix
Michael Coates @_mwc
11K Followers 2K Following CyberSecurity & Innovation - Former: CISO @Twitter, @Mozilla, @Coinlist, Chairman @OWASP, Startup Founder (Acquired) | Seven Hill Ventures
Doma Title Insurance,... @DomaUnderwritng
468 Followers 495 Following Architecting the future of real estate transactions.
Porsche Digital @Porschedigital
5K Followers 275 Following Official Account of Porsche Digital // Our mission: Digital engineering to spark excitement and to create value // #PorscheDigital
Rippling @Rippling
12K Followers 459 Following Run your business like a mastermind https://t.co/dBqCc6vqd4
Nexi Group @nexigroup
1K Followers 184 Following We are the Leading Payment Company in Europe. At Nexi, we simplify payments for People.
BMC Software @BMCSoftware
48K Followers 2K Following BMC Software unlocks human and machine potential to drive business growth, innovation, and sustainable success. BMC: business faster than humanly possible.
Secure Code Warrior @SecCodeWarrior
3K Followers 560 Following AI Software Governance for secure AI-assisted development. Reduce software risk and strengthen developer capability.
AXA @AXA
82K Followers 551 Following #AXA Global Twitter account for news & stories about #insurance & asset management, the company & its subsidiaries worldwide
Pepperstone AU @PepperstoneFX
41K Followers 162 Following All trading involves risk. General advice only. AFSL 414530 | SIA-F217 | CMA 128 | FSC GB21026314 | DFSA F004356 | Not intended for a UK or EU audience
Optimizely @Optimizely
29K Followers 3K Following Optimizely is on a mission to make the lives of marketers better with Optimizely One, powered by Optimizely Opal.
DigitalOcean @digitalocean
221K Followers 205 Following The AI-Native Cloud. ☁️ Status: @DOstatus Support: https://t.co/5gkvyionbi
Coinbase 🛡️ @coinbase
7.0M Followers 171 Following The future of finance is on Coinbase. For support: @CoinbaseSupport
Vanguard @Vanguard_Group
399K Followers 14 Following Trusted by 50 million investors for over 50 years—helping you invest for your future. Community guidelines: https://t.co/F9iBO3Q24d
Citi @Citi
856K Followers 360 Following Serving as a trusted partner to our clients by responsibly providing financial services that enable growth & economic progress. Customer service: @AskCiti
Draxler @Draxlerx_
27 Followers 18 Following
Paychex @Paychex
12K Followers 733 Following All-in-one #payroll, #HR, #benefits & #retirement platform that integrates each aspect of your business. 📥 Send us a DM for 24x7 Support.
HashiCorp, an IBM Com... @HashiCorp
103K Followers 146 Following HashiCorp helps you to automate multi-cloud & hybrid environments with Infrastructure & Security Lifecycle Management.
Snapchat @Snapchat
2.5M Followers 9 Following Say it in a Snap. Learn more and download the app at https://t.co/E7G91RVYyw
Eric Geller @ericgeller
76K Followers 824 Following Senior reporter at @CyberSecDive covering all things digital security. I also co-host @hothtakes. | Send me tips: https://t.co/XevCjdQhqz
Jim Manico from Manic... @manicode
17K Followers 6K Following AI and AppSec Educator. Secure coding system prompts. https://t.co/gbW3ZLhURT
Jeff Williams @planetlevel
3K Followers 356 Following Contrast Security Founder & CTO Streamlining appsec with runtime security https://t.co/oGdQaQ6o6Y he/him
Sounil Yu @sounilyu
2K Followers 193 Following CTO @Knosticai | @MasonNatSec Fellow | Creator of the Cyber Defense Matrix & DIE Triad | Mad Scientist
Wendy Nather @wendynather
31K Followers 374 Following
Teri Radichel #cybers... @TeriRadichel
15K Followers 3K Following Founder @2ndSightLab | AI Assisted Pentester. Researcher | AWS Security Hero l GSE | Former IANS, SANS faculty | Contact: LinkedIn
Caroline Wong @CarolineWMWong
3K Followers 2K Following Mom. Dog lover. Chief Strategy Officer at @cobalt_io. @humansofinfosec podcast. @LI_learning cybersecurity instructor.
Rinki Sethi @rinkisethi
14K Followers 599 Following CSO Upwind | Founding Partner Lockstep | Board Vaultree, ForgeRock, StrongDM | Ex BILL, Twitter, Rubrik, IBM, PANW, Intuit, eBay, Walmart, PG&E | InfoSec geek
Kim Wuyts @KimWuyts
11 Followers 9 Following
Scott Piper @0xdabbad00
20K Followers 253 Following Cloud security historian Developed https://t.co/ZXFwkuyseC, CloudMapper, and Parliament Organizer for @fwdcloudsec Researcher at @wiz_ioYou might like
