Found a great blog on Advance Threat Intel A Medium article details an automated workflow that uses AI to discover newly added CISA KEV vulnerabilities, generate Sigma detection rules, map them to MITRE ATT&CK, and distribute results to platforms like Google Sheets, Slack, email, and SIEMs. The process aims to streamline threat intelligence and detection engineering for SOC analysts, detection engineers, threat hunters, and blue teams. Just came across a great Medium article that shows how to automate the entire process of discovering newly added CISA KEV vulnerabilities and generating Sigma detection rules using AI. Instead of manually tracking new CVEs and writing detections from scratch, the workflow automatically: Identifies newly published KEV vulnerabilities Generates Sigma detection rules with AI Maps them to MITRE ATT&CK Distributes the results to Google Sheets, Slack, email, and your SIEM If you're a SOC analyst, detection engineer, threat hunter, or blue team practitioner looking to streamline threat intelligence and detection engineering, this is definitely worth a read.Comments URL: https://news.ycombinator.com/item?id=48741944 https://news.ycombinator.com/item?id=48741944 Points: 1 Comments: 0