Drew Stelly

Contact

cd@stelly.org

About

Hello!

I'm a big believer in 'offense wins championships'. I love researching offensive cyber. I try and apply my academic backround, centered in digital forensics, and combine them with my professional experience.

I'm the author of https://cyberaiguy.com which explains adversarial AI and ML concepts (such as gradient desacent) for uninitated security engineers, including Red Teams and Penetration Testing teams.

I've collected a selection of my papers and presentations here. Please feel free to contact me for copies of any of the below, and I'd be happy to share anything that isn't under an NDA or is otherwise proprietary.

Code

https://github.com/cdstelly/

https://cyberaiguy.com/

https://github.com/cyberaiguy/

Current Papers

  1. From data interoperability to ‘moral interoperability’ in the global health data architecture: Integrated use case of AI-driven computational ethical analysis with Bayesian-propensity score and cost-benefit analyses optimizing efficiency and equity in colorectal cancer. Submitted to PubMed-indexed Journal of Medicine & Philosophy, 2023
  2. Gauging Adversarial Attacks utilizing Monte Carlo Tree Search for Automated Testcase Selection during Active Defense Response Scenarios. Unsubmitted.
  3. Fuzzy Radios - Automated Vulnarbility Scanning of Radio Devices. Unsubmitted.

Publications

  1. A Domain Specific Language for Digital Forensics and Incident Response Analysis. Submitted to the University of New Orleans in fulfillment of the degree of Doctor of Philosophy in the Department of Computer Science, December 2019.
  2. Language-based Integration of digital forensics & incident response, (ARES/UK 2019). ACM.
  3. Nugget: A digital forensics language, Digital Investigation (EU/Italy 2018).
  4. SCARF: A container-based approach to cloud-scale digital forensic processing, Digital Investigation (USA 2017)
  5. Red Crawling for Perimeter Intelligence, Lockheed Martin Journal of Software Engineering, 2016
  6. Dynamic Bytecode Instrumentation for Mobile Security, Lockheed Martin Journal of Software Engineering, 2015
  7. Dynamic Aspect-Oriented Bytecode Instrumentation, Submitted to the University of New Orleans in fulfillment of the degree of Master of Science, March 2015.

Presentations

  1. Attacking AI - Stories and Secrets, Fall 2023, Thomson Reuters Corporation
  2. Leveraging Attacker Math, Fall 2022, Thomson Reuters Corporation
  3. Red Teaming with Radios - Cyber RF/EW Testing, Spring 2021, Lockheed Martin Fellows Conference
  4. A Distributed C2 Framework - DVN, Fall 2020, Wild West Hackin' Fest
  5. Cyber RF Testing for the DoD, Spring 2020, ND-ISAC
  6. Dissertation Defense, Fall 2019, University of New Orleans
  7. Improving Physical TPM Attacks, ND-ISAC, Spring 2019
  8. Digital Forensics at Scale utlizing Docker, B-SIDES NOLA, 2019

last updated September 2023