Making Sense of Unstructured Threat Data

Explore how to leverage Natural Language Processing (NLP) techniques to organize and structure unstructured threat intelligence data in this informative conference talk from BSidesSF 2019. Discover the challenges of tracking and applying cybersecurity intelligence due to its unstructured nature, and learn how recent advances in NLP, particularly Word2Vec, can help overcome these obstacles. Gain insights into training a Word2Vec model using open-source intelligence reports from EU-CERT and US-CERT to cluster information into tactical categories that align with the MITRE ATT&CK framework. Understand the potential of this approach in making threat intelligence more actionable and valuable for cybersecurity operations and analytical systems.

BSidesSF 2019 - Making Sense of Unstructured Threat Data (Zainab Danish • Nicolas Kseib)