Lucene search
K

31 matches found

Packet Storm News
Packet Storm News
added 2026/06/03 12:0 a.m.15 views

From Attack Simulation to SIEM Rule: Deterministic Detection-As-Code Synthesis with Probe-Level Traceability

Security teams routinely simulate attacks against their own systems to check whether their monitoring would catch a real intruder. These Breach-and-Attack-Simulation BAS tools surface findings, but the security information and event management SIEM systems that watch production need detection rul...

5.4AI score
Exploits0
GithubExploit
GithubExploit
added 2026/05/20 4:15 a.m.83 views

SOC-Alert-Investigation-Portfolio

SOC Alert Investigation Portfolio This repository contains pr...

5.9AI score
Exploits0
GithubExploit
GithubExploit
added 2026/05/16 2:53 p.m.80 views

Operation-Molasses

🍯 OPERATION MOLASSES PEKMEZ Zencefil Efendi's Cyber Dow...

6AI score
Exploits0
Packet Storm News
Packet Storm News
added 2026/04/28 12:0 a.m.22 views

OpenSOC-AI: Democratizing Security Operations with Parameter Efficient LLM Log Analysis

Small and medium sized businesses SMBs face an escalating cybersecurity threat landscape, yet most lack the resources to staff full Security Operations Centers SOCs or deploy enterprise grade detection platforms. This paper presents OpenSOC-AI, a lightweight log analysis framework that uses...

5.4AI score
Exploits0
GithubExploit
GithubExploit
added 2026/04/21 12:15 p.m.87 views

BuildReview2

BuildReview2 - Attack-Path-Driven Windows Host Review A rewri...

5.8AI score
Exploits0
GithubExploit
GithubExploit
added 2026/04/03 10:50 p.m.157 views

redhound-arsenal

Red Hound Arsenal Agent-consumable security skill library for...

6.1AI score
Exploits0
Packet Storm News
Packet Storm News
added 2026/03/17 12:0 a.m.4 views

DeepStage: Learning Autonomous Defense Policies against Multi-Stage APT Campaigns

This paper presents DeepStage, a deep reinforcement learning DRL framework for adaptive, stage-aware defense against Advanced Persistent Threats APTs. The enterprise environment is modeled as a partially observable Markov decision process POMDP, where host provenance and network telemetry are fus...

5.8AI score
Exploits0
Packet Storm News
Packet Storm News
added 2026/03/08 12:0 a.m.4 views

Learning the APT Kill Chain: Temporal Reasoning over Provenance Data for Attack Stage Estimation

Advanced Persistent Threats APTs evolve through multiple stages, each exhibiting distinct temporal and structural behaviors. Accurate stage estimation is critical for enabling adaptive cyber defense. This paper presents StageFinder, a temporal graph learning framework for multi-stage attack...

5.8AI score
Exploits0
GithubExploit
GithubExploit
added 2026/02/21 6:1 a.m.173 views

Redteam-Automation

🔴 AI-Driven Red Team Simulation Framework A production-ready...

6AI score
Exploits0
Microsoft Secure
Microsoft Secure
added 2026/01/29 9:20 p.m.6 views

Turning threat reports into detection insights with AI

Security teams routinely need to transform unstructured threat knowledge, such as incident narratives, red team breach-path writeups, threat actor profiles, and public reports into concrete defensive action. The early stages of that work are often the slowest. These include extracting tactics,...

5.7AI score
Exploits0
Microsoft Secure
Microsoft Secure
added 2026/01/29 9:20 p.m.8 views

Turning threat reports into detection insights with AI

Security teams routinely need to transform unstructured threat knowledge, such as incident narratives, red team breach-path writeups, threat actor profiles, and public reports into concrete defensive action. The early stages of that work are often the slowest. These include extracting tactics,...

6AI score
Exploits0
Packet Storm News
Packet Storm News
added 2026/01/20 12:0 a.m.4 views

Constructing Multi-Label Hierarchical Classification Models for MITRE ATT&CK Text Tagging

MITRE ATT&CK is a cybersecurity knowledge base that organizes threat actor and cyber-attack information into a set of tactics describing the reasons and goals threat actors have for carrying out attacks, with each tactic having a set of techniques that describe the potential methods used in these...

5.7AI score
Exploits0
Trend Micro Simply Security
Trend Micro Simply Security
added 2026/01/13 12:0 a.m.9 views

Key Insights on SHADOW-AETHER-015 and Earth Preta from the 2025 MITRE ATT&CK Evaluation with Trend Vision One™

This blog discusses notable modern TTPs observed from SHADOW-AETHER-015 and Earth Preta, from Trend Research™ monitoring and Trend Vision One™ intelligence. These findings support the performance of TrendAI™ in the 2025 MITRE ATT&CK Evaluations...

7AI score
Exploits0
Trend Micro Simply Security
Trend Micro Simply Security
added 2026/01/13 12:0 a.m.5 views

Key Insights on SHADOW-AETHER-015 and Earth Preta from the 2025 MITRE ATT&CK Evaluation with TrendAI Vision One™

This blog discusses notable modern TTPs observed from SHADOW-AETHER-015 and Earth Preta, from TrendAI Research™ monitoring and TrendAI Vision One™ intelligence. These findings support the performance of TrendAI™ in the 2025 MITRE ATT&CK Evaluations...

5.4AI score
Exploits0
Rapid7 Blog
Rapid7 Blog
added 2026/01/05 8:31 p.m.19 views

Metasploit 2025 Annual Wrap-Up

Hard to believe it's that time again, and that Metasploit Framework will see the dawn of another Annual Wrap-Up and a New Year. All of the metrics and modules you see here would in large part not be possible without the dedicated community members who care about the Framework and its mission on a...

9.1AI score
Exploits0
GithubExploit
GithubExploit
added 2025/12/11 6:36 a.m.176 views

cyber-security-lab-soc-vapt-beginner

Cyber Security Practice Lab — Beginner SOC + VAPT This begin...

8AI score
Exploits0
Packet Storm News
Packet Storm News
added 2025/12/08 12:0 a.m.5 views

Detecting Ambiguity Aversion in Cyberattack Behavior to Inform Cognitive Defense Strategies

Adversaries hackers attempting to infiltrate networks frequently face uncertainty in their operational environments. This research explores the ability to model and detect when they exhibit ambiguity aversion, a cognitive bias reflecting a preference for known versus unknown probabilities. We...

6.8AI score
Exploits0
Packet Storm News
Packet Storm News
added 2025/11/11 12:0 a.m.6 views

Endpoint Security Agent: A Comprehensive Approach to Real-Time System Monitoring and Threat Detection

As cyber threats continue to evolve in complexity and frequency, robust endpoint protection is essential for organizational security. This paper presents "Endpoint Security Agent: A Comprehensive Approach to Real-time System Monitoring and Threat Detection" a modular, real-time security solution...

6.6AI score
Exploits0
GithubExploit
GithubExploit
added 2025/10/12 9:37 p.m.139 views

offensive-toolkit

Offensive Security Toolkit A comprehensive, modular Python fr...

8.1AI score
Exploits0
Packet Storm News
Packet Storm News
added 2025/10/07 12:0 a.m.3 views

Code Agent Can Be an End-To-End System Hacker: Benchmarking Real-World Threats of Computer-Use Agent

Computer-use agent CUA frameworks, powered by large language models LLMs or multimodal LLMs MLLMs, are rapidly maturing as assistants that can perceive context, reason, and act directly within software environments. Among their most critical applications is operating system OS control. As CUAs in...

7AI score
Exploits0
Rows per page
Query Builder