Tag: MITRE ATT&CK

Save Detection Code & Metadata to Custom Repositories
Save Detection Code & Metadata to Custom Repositories

How It Works This feature allows detection engineers to store detection rules in their own repositories—alongside all intelligence, MITRE mapping, and operational metadata—in the same format used across Threat Detection Marketplace. Users can choose a platform (e.g., Sigma), specify a repository destination, and provide context like severity and status. The rule and its metadata are […]

Read More
Convenient Detection Code Editor for Uncoder AI
Convenient Detection Code Editor for Uncoder AI

How It Works Uncoder AI acts as a modern integrated development environment (IDE) tailored for detection engineers. At its core is a specialized code editor that supports writing and refining detection logic with precision and speed. The editor recognizes the detection language automatically and adapts syntax highlighting accordingly. Whether you’re working with Sigma or Roota, […]

Read More
Supercharge Detection Content into Roota Format with AI
Supercharge Detection Content into Roota Format with AI

How It Works Platform-specific rules or queries—such as those written in Splunk, Sentinel, or other supported formats—can now be automatically transformed into Roota format using Uncoder AI. This isn’t just a format switch; it’s a context-rich conversion process that layers metadata critical to operational success. Once a user clicks the Supercharge button, Uncoder AI processes […]

Read More
Uncoder AI Automates MITRE ATT&CK Tagging in Sigma Rules
Uncoder AI Automates MITRE ATT&CK Tagging in Sigma Rules

How It Works The MITRE ATT&CK framework is the gold standard for structuring detection logic by adversary techniques. But tagging Sigma rules manually with appropriate ATT&CK techniques is a time-consuming, detail-heavy task that requires expertise in both detection syntax and adversarial behavior mapping. Uncoder AI changes that by automatically predicting MITRE ATT&CK tags for Sigma […]

Read More
SOC Prime to Present at 2025 MITRE ATT&CK® Community Workshop
SOC Prime to Present at 2025 MITRE ATT&CK® Community Workshop

We are excited to participate in the 2025 EU MITRE ATT&CK® Community Workshop, taking place on May 15, 2025, in Brussels. The event is hosted by Eurocontrol and supported by the MITRE Center for Threat-Informed Defense and the Centre for Cybersecurity Belgium. Check out the workshop registration details here. SOC Prime’s CEO and Founder, Andrii […]

Read More
SOC PRIME TO PRESENT AT THE TWELFTH EU MITRE ATT&CK® COMMUNITY WORKSHOP
SOC PRIME TO PRESENT AT THE TWELFTH EU MITRE ATT&CK® COMMUNITY WORKSHOP

Join us at the 12th EU MITRE ATT&CK Community Workshop, which will take place on May 17 at the Centre for Cybersecurity Belgium in Brussels. The upcoming event hosts hundreds of cybersecurity professionals and ATT&CK enthusiasts from across the world who will share in-depth insights on industry best practices and exchange experiences in utilizing the […]

Read More
SOC Prime Platform Now Supports the MITRE ATT&CK® Framework v14.1 
SOC Prime Platform Now Supports the MITRE ATT&CK® Framework v14.1 

MITRE ATT&CK acts as a periodic table to categorize and track the methods employed by attackers and enables defenders to profile, identify, and compare threat actors and prioritize threat detection goals. Leveraging ATT&CK, cyber defenders are equipped with a single framework they can rely on to retrospectively document common techniques employed in cyber attacks. SOC […]

Read More
SOC Prime Becomes a Benefactor of MITRE ATT&CK®
SOC Prime Becomes a Benefactor of MITRE ATT&CK®

Advancing Our Shared Understanding of Adversary TTPs and Empowering Defenders Boston, MA—SOC Prime, provider of the world’s largest and most advanced platform for collective cyber defense, today announced it has become the MITRE ATT&CK® Benefactor, supporting the evolution of the ATT&CK framework to empower research into emerging threats and promote knowledge sharing on a global […]

Read More
Driving Business Growth in Turbulent Times from the Perspective of SOC Prime’s CEO: Part II
Driving Business Growth in Turbulent Times from the Perspective of SOC Prime’s CEO: Part II

How Fusing Sigma & MITRE ATT&CK® Empowers Collective Cyber Defense to Gain a Competitive Advantage in the Global Cyber War This article is based on the original interview conducted by AIN.UA and covered in the corresponding article.   In this second part of the interview with SOC Prime’s Founder, CEO, and Chairman, Andrii Bezverkhyi, we’ll provide […]

Read More
Driving Business Growth in Turbulent Times from the Perspective of SOC Prime’s CEO: Part I
Driving Business Growth in Turbulent Times from the Perspective of SOC Prime’s CEO: Part I

Agents of S.H.I.E.L.D.: How SOC Prime Helps Ukraine Thwart Aggressor’s Cyber Attacks This article is based on the interview conducted by our partner AIN.UA and covered in the corresponding article. In this write-up within a series covering SOC Prime’s Business Continuity Plan (BCP), SOC Prime’s Founder, CEO, and Chairman, Andrii Bezverkhyi, shares insights about the […]

Read More