In the evolving landscape of Cyber Threat Intelligence (CTI), the need for advanced, AI-assisted tooling has never been more critical. Our project, CTI AI Tools, is dedicated to empowering the CTI community with state-of-the-art AI capabilities to enhance their threat intelligence efforts. By leveraging Large Language Models (LLMs), we offer a suite of tools designed to streamline and enrich the analysis, understanding, and management of CTI data.
Our tools are provided free of charge, democratizing access to advanced AI for CTI professionals and researchers alike. In return, we collect anonymized data to continually train and improve our AI models, ensuring our offerings remain at the cutting edge of technology.
Key Use-Cases for LLMs in CTI
UC 1: Summarization of Free Text CTI - Automatically generate concise summaries of detailed CTI reports, enabling quick understanding and action.
UC 2: Named Entity Recognition (NER) - Identify and classify key entities within CTI texts, such as threat actor names, malware types, and vulnerabilities.
UC 3: Q&A on CTI Texts via RAG - Utilize Retrieval-Augmented Generation for answering complex questions directly from CTI texts, providing precise information when it's needed most.
UC 4: TTP Tagging - Extract Tactics, Techniques, and Procedures (TTPs) from CTI reports, aiding in the identification of threat actor behaviors and methodologies.
UC 5: Graph Relationship Extraction - Reveal the intricate web of relationships within CTI texts, such as connections between actors, tools, and targets, enhancing the contextual understanding of threats.
Publications (tbd.)
2024 Cyber Threat Intelligence Conference
2024 36th ANNUAL FIRST CONFERENCE
Future Goals
Publishing multiple open CTI datasets, that allow for better training and fine-tuning of AI models.
Improving, expanding and publishing our models and tooling to cover more aspects of CTI.
Building a community around the use of AI by CTI professionals to share insights, methodologies, and best practices.
Ensuring our tools remain accessible and free to use, fostering a more secure and informed cybersecurity ecosystem.
Contact
We're always open to feedback, questions, or collaboration opportunities. Reach out to us:
Email:
[SPAM-Protection: you need to enable Javascript to see this]
Disclaimer
The tools and data provided by CTI AI Tools are intended for informational and educational purposes only. AI can make mistakes and does so more often then not. Use caution and human intelligence. While we strive for accuracy, we cannot guarantee the completeness, reliability, or timeliness of the information. The use of these tools and information is at the user's own risk. Users are encouraged to conduct their own analysis and due diligence.