TTP context extraction from text #2731
Labels
feature
use for describing a new feature to develop
needs triage
use to identify issue needing triage from Filigran Product team
Be able to have the context of a TTP extracted automatically from the text and added to the TTP.
For example in this report:
FIN7 uses Powershell.
Would be automatically extracted and linked or added to the TTP: FIN7 used “58d2a83f777942.26535794.ps1” a multilayer obfuscated PowerShell script, which launches shellcode for a Cobalt Strike stager...etc.
The text was updated successfully, but these errors were encountered: