Blog
The dogesec blog
-
Using MITRE ATT&CK Navigator with Custom Intelligence Frameworks
TUTORIAL PRODUCTS January 06, 2025
The MITRE ATT&CK Navigator is a very useful tool to explore the MITRE ATT&CK. In this post I take a look at how the Navigator loads ATT&CK objects, so you can use it to model your own ATT&CK-like frameworks. -
Fortifying AI: How MITRE ATLAS Shields Artificial Intelligence from Adversarial Threats
RESEARCH December 30, 2024
Discover how MITRE ATLAS is helping to defend AI systems as I share a detailed explanation of how the knowledge-base is architected. -
Enriching Vulnerabilities to Create an Intelligence Graph
RESEARCH December 23, 2024
We do a lot of our research into vulnerabilities. To aid this, we enrich CVEs using many remote sources of intelligence. Here is a walk-through showing how we connect CVEs to EPSS scores, CISA KEVs, MITRE ATT&CK, CWEs, and CAPECs. -
How CTI Butler Creates a Threat Intelligence Graph of Common Frameworks
RESEARCH December 16, 2024
CTI Butler links many common knowledge bases, for example linking MITRE ATT&CK to CAPEC objects, to improve the context of our research. This post describes the logic CTI Butler employs behind the scenes to do this. -
An Analysis of the Latest Sigma Rules Release
RESEARCH December 09, 2024
In this post I walk you through the database queries we use to compare Sigma Rules releases. We use these to identify the detail of what has changed before we push any updates internally. -
Importing Sigma Rules into a Threat Intelligence Platform
RESEARCH December 02, 2024
We needed a way to link all of our threat intel research to detection rulesets in one place. Our solution; model Sigma Rules as STIX objects. -
An Analysis of the Latest CWE Release
RESEARCH November 25, 2024
Last week saw the release of CWE v4.16. I took a deeper look into the latest release so you don't have to. -
How do Public AI Models Perform at Extracting TTPs from Intelligence Reports?
PRODUCTS November 18, 2024
I pitch OpenAI, Anthropic and Google against each other to see which one best understands MITRE ATT&CK -
Turn any Blog Post into Structured Threat Intelligence
PRODUCTS November 11, 2024
Obstracts is the blog feed reader used by the worlds most targetted cyber-security teams. Let me show you why. -
An Analysis of the Changes in ATT&CK Version 16.0
RESEARCH November 04, 2024
Your handy guide to streamlining upgrades of MITRE ATT&CK by comparing the changes made between releases.
1 of 4
Older posts →