Guru
Cyber Intelligence and Training Based on Emerging Threats
|
Adversaries utilize thorough and sometimes sophisticated surveillance structures to consume innovation from within the security community. We see security researcher content being shared and talked about on criminally controlled communication assets. This initiates a race between those developing exploit tradecraft and those developing remediation strategies. Guru goes straight to the source, the security community and ingests signals to try and anticipate emerging threat vectors. Our backend sensor technology has proven quite effective since its inception, sometimes anticipating threats as much as 3 – 6 months ahead of official FBI industry notifications.
The security community is an abstract concept that can include things like source code repositories, social media influencers, cyber criminals, security researchers, community chatter, trending news and vendor blogs. Guru sifts through the vast amount of data to produce highly triaged signals, their relationships and links to the underlying signal assets (code repositories, social media accounts, blogs etc…). |
Guru’s data is visualized within a constantly changing graph of exploit tools, their makers and their relationships. The graph is generated and updated dynamically, based on current events going on within the security community. Additionally, Guru delivers data through a conversational intelligence that dispenses cyber intelligence and red team tactics, based on consumed signals from the platform. Analysts can conversationally engage the interface to get trending threat intelligence, adversary tradecraft and instruction on how to replicate adversary tactics, step by step.
|
Security Community Surveillance Architecture
