Explore how to leverage Natural Language Processing (NLP) techniques to organize and structure unstructured threat intelligence data in this informative conference talk from BSidesSF 2019. Discover the challenges of tracking and applying cybersecurity intelligence due to its unstructured nature, and learn how recent advances in NLP, particularly Word2Vec, can help overcome these obstacles. Gain insights into training a Word2Vec model using open-source intelligence reports from EU-CERT and US-CERT to cluster information into tactical categories that align with the MITRE ATT&CK framework. Understand the potential of this approach in making threat intelligence more actionable and valuable for cybersecurity operations and analytical systems.
Overview
Syllabus
BSidesSF 2019 - Making Sense of Unstructured Threat Data (Zainab Danish • Nicolas Kseib)
Taught by
Security BSides San Francisco
Related Courses
-
MITRE ATT&CK Defender™ (MAD) ATT&CK® Cyber Threat Intelligence Certification Training
-
MITRE ATT&CK Defender™ (MAD) ATT&CK® SOC Assessments Certification Training
-
MITRE ATT&CK Defender™ ATT&CK® Threat Hunting
-
Red Team Tools for Emulated Adversary Techniques with MITRE ATT&CK
-
Threat Hunting - Using MITRE ATT&CK Against Carbanak Malware
-
Don't Boil the Ocean - Using MITRE ATT&CK to Guide Hunting Activity
3.0
