Ask-a-Thrunt3r: October 2025 Logtoberfest Edition 🍺🐏

Mainly ramblings. And maybe some wisdom.

, and

Nov 04, 2025

Ask-a-Thrunt3r: October 2025 - Logtoberfest Edition 🍺

📝 Episode Summary

Welcome to Logtoberfest! The THOR Collective raises their glasses (and their log levels) for the most anticipated episode of the year, featuring special guest Damien Lewke, founder and CEO of Nebulock. This October edition tackles the burning question on every hunter’s mind: what does the future of threat hunting actually look like beyond the marketing hype and slick promo videos?

Damien drops the mic with Nebulock’s mission to “democratize threat hunting”, making proactive security a right, not a privilege reserved for the few. The conversation dives deep into how agentic AI has already transformed the adversary landscape, blurring lines between nation-state actors and script kiddies while automating tailored access at scale. The crew explores the reality that while bad actors have gone fully agentic (as Anthropic’s August threat report confirmed), defenders are still stuck with yesterday’s tools.

From debating whether AI agents are the future or just expensive autopilots, to discussing quantum computing’s threat timeline and the practicality of SOCs in virtual reality, this episode separates genuine innovation from vendor vaporware. Plus, Sydney drops knowledge on collaborative hunting platforms while John shares red team perspectives on AI-powered attack path mapping. Whether you’re a seasoned hunter or a SOC analyst looking to level up, this episode delivers the unfiltered truth about what’s coming in the next 12-24 months.

⏱️ Episode Breakdown

01:10 – Welcome to Logtoberfest
01:24 – Special guest introduction: Damien Lewke from Nebulock
06:17 – Icebreaker: If your favorite log source were a beer, what style would it be?
09:05 – Thrunt3r Spotlight
10:58 – October Dispatch Highlights & community milestones
28:00 - The future of threat hunting
52:19 – Hype or Bust rapid-fire round
57:46 – Giveaway announcement
58:35 – Closing cheers to verbose logs and loud communities

🎤 Hosts & Guest

Lauren Proehl (Host) – Manager of the group and self-proclaimed cautious AI optimist who’s evolved from “AI hater” to seeing genuine opportunity with mindful implementation.

Sydney Marrone (Host) – Chief thrunter, recently joining Nebulock. Champion of removing gatekeeping from threat hunting and making it accessible to all skill levels.

John Grageda (Host) – Red teamer bringing the adversarial perspective. Expert at hiding from endpoint detection (allegedly) and advocate for AI-powered attack path mapping.

Damien Lewke (Special Guest) – Founder & CEO of Nebulock, middle child, and longtime listener turned guest. Building the agentic threat hunting platform to bridge the gap between elite hunters and aspiring analysts.

🔗 Resources & Mentions

October Dispatch Posts

Agentic Threat Hunting, Part 2: Starting a Hunt Repo by Sydney Marrone
Hunting Beyond Indicators by Sam Hanson
Aligning Risk Management and Threat-Informed Defense Practices (Part 1) by Micah VanFossen

Tools & Platforms Mentioned

Nebulock – Agentic threat hunting platform
Maltego
GPT-4 and Claude for detection engineering
Traditional SIEM platforms vs. next-gen alternatives

Community Resources

📢 Call to Action

Message THOR Collective on Discord – First responder after the episode wins Logtoberfest swag!
Share your log-to-beer pairing – Include your favorite log type and beer style for bonus points
Test drive AI hunting tools – Explore how agents can augment your current workflows
Document your baselines – Stable baselines are essential before implementing AI detection
Share your 2026 predictions – What do you think threat hunting will look like next year?
Join the AI debate – Are you team “cautious optimist” or team “show me the code”?
Upskill your SOC analysts – Consider platforms that lower the barrier to threat hunting