Using LLMs to Automate Threat Intelligence Analysis Workflows in Security Operation Centers

Document detail
ID

oai:arXiv.org:2407.13093

Topic
Computer Science - Cryptography an...
Author
Tseng, PeiYu Yeh, ZihDwo Dai, Xushu Liu, Peng
Category

Computer Science

Year

2024

listing date

7/24/2024

Keywords
security
Metrics

Abstract

SIEM systems are prevalent and play a critical role in a variety of analyst workflows in Security Operation Centers.

However, modern SIEMs face a big challenge: they still cannot relieve analysts from the repetitive tasks involved in analyzing CTI (Cyber Threat Intelligence) reports written in natural languages.

This project aims to develop an AI agent to replace the labor intensive repetitive tasks involved in analyzing CTI reports.

The agent exploits the revolutionary capabilities of LLMs (e.g., GPT-4), but it does not require any human intervention.

Tseng, PeiYu,Yeh, ZihDwo,Dai, Xushu,Liu, Peng, 2024, Using LLMs to Automate Threat Intelligence Analysis Workflows in Security Operation Centers

Document

Open

Share

Source

arXiv

Articles recommended by ES/IODE AI

Computer Science
Using LLMs to Automate Threat Intelligence Analysis Workflows in Security Operation Centers
 security
AJNR: American Journal of Ne...
Assessing the Equivalence of Brain-Derived Measures from Two 3D T1-Weighted Acquisitions: One Covering the Brain and One Covering the Brain and Spinal Cord
 >0 t1-weighted brain icc cns-t1 measures spinal
Medicine & Public Health
Factors associated with insomnia symptoms over three years among premenopausal women with breast cancer
 sleep insomnia breast cancer premenopausal quality of life survivorship 0001 women flashes hot depressive associated symptoms breast < 0 cancer