I have a personal interest in incidents of vendor disparagement and attacks on security researchers (and their security research). It’s in this context I need to address Elastic’s July 2025 blog post: ‘Taking SHELLTER: a commercial evasion framework abused in-the-wild.‘ I see this as a vendor fearmongering exercise. Elastic has motivated why SHELLTER is a … Continue reading Taking them to the SHITTER: an analysis of vendor abuse of security research in-the-wild