Next-Gen Detection: Harnessing LLMs for Sigma Rule Automation
Security BSides San Francisco via YouTube
Overview
Explore cutting-edge detection engineering techniques in this 38-minute conference talk from Security BSides San Francisco. Delve into the innovative use of Large Language Models (LLMs) for automating Sigma rule generation, a crucial aspect of modern threat detection. Examine various approaches including Retrieval-Augmented Generation (RAG), fine-tuning, and prompt-chaining, comparing their effectiveness in streamlining and enhancing the threat detection process. Gain insights into how these advanced AI techniques can revolutionize cybersecurity practices and improve the efficiency of detection engineering workflows.
Syllabus
BSidesSF 2024 - Next-Gen Detection: Harnessing LLMs for Sigma Rule Automation (Dave Johnson)
Taught by
Security BSides San Francisco