How It Works This feature allows detection engineers to store detection rules in their own repositories—alongside all intelligence, MITRE mapping, and operational metadata—in the same format used across Threat Detection Marketplace. Users can choose a platform (e.g., Sigma), specify a repository destination, and provide context like severity and status. The rule and its metadata are […]
How It Works Uncoder AI acts as a modern integrated development environment (IDE) tailored for detection engineers. At its core is a specialized code editor that supports writing and refining detection logic with precision and speed. The editor recognizes the detection language automatically and adapts syntax highlighting accordingly. Whether you’re working with Sigma or Roota, […]
How It Works Platform-specific rules or queries—such as those written in Splunk, Sentinel, or other supported formats—can now be automatically transformed into Roota format using Uncoder AI. This isn’t just a format switch; it’s a context-rich conversion process that layers metadata critical to operational success. Once a user clicks the Supercharge button, Uncoder AI processes […]
How It Works The MITRE ATT&CK framework is the gold standard for structuring detection logic by adversary techniques. But tagging Sigma rules manually with appropriate ATT&CK techniques is a time-consuming, detail-heavy task that requires expertise in both detection syntax and adversarial behavior mapping. Uncoder AI changes that by automatically predicting MITRE ATT&CK tags for Sigma […]
We are excited to participate in the 2025 EU MITRE ATT&CK® Community Workshop, taking place on May 15, 2025, in Brussels. The event is hosted by Eurocontrol and supported by the MITRE Center for Threat-Informed Defense and the Centre for Cybersecurity Belgium. Check out the workshop registration details here. SOC Prime’s CEO and Founder, Andrii […]
Join us at the 12th EU MITRE ATT&CK Community Workshop, which will take place on May 17 at the Centre for Cybersecurity Belgium in Brussels. The upcoming event hosts hundreds of cybersecurity professionals and ATT&CK enthusiasts from across the world who will share in-depth insights on industry best practices and exchange experiences in utilizing the […]
MITRE ATT&CK acts as a periodic table to categorize and track the methods employed by attackers and enables defenders to profile, identify, and compare threat actors and prioritize threat detection goals. Leveraging ATT&CK, cyber defenders are equipped with a single framework they can rely on to retrospectively document common techniques employed in cyber attacks. SOC […]
Advancing Our Shared Understanding of Adversary TTPs and Empowering Defenders Boston, MA—SOC Prime, provider of the world’s largest and most advanced platform for collective cyber defense, today announced it has become the MITRE ATT&CK® Benefactor, supporting the evolution of the ATT&CK framework to empower research into emerging threats and promote knowledge sharing on a global […]
How Fusing Sigma & MITRE ATT&CK® Empowers Collective Cyber Defense to Gain a Competitive Advantage in the Global Cyber War This article is based on the original interview conducted by AIN.UA and covered in the corresponding article.  In this second part of the interview with SOC Prime’s Founder, CEO, and Chairman, Andrii Bezverkhyi, we’ll provide […]
Agents of S.H.I.E.L.D.: How SOC Prime Helps Ukraine Thwart Aggressor’s Cyber Attacks This article is based on the interview conducted by our partner AIN.UA and covered in the corresponding article. In this write-up within a series covering SOC Prime’s Business Continuity Plan (BCP), SOC Prime’s Founder, CEO, and Chairman, Andrii Bezverkhyi, shares insights about the […]