Hi, comrades! The tools we have on hand aren't always a perfect fit, so we often have to tweak and improve them. Would you be interested in seeing the processes and tools that help me navigate the CVE disclosure workflow: from triage to MITRE (MITRE as Secretariat) assignment? To be honest, this is new ground for me as well, so we'd be learning as we go. If so, let me know and I'll put together some materials.

PS: screenshot shows one of the tools - db for managing the lifecycle of identified vulnerabilities

#infosec #security #fuzzing #revers #cybersecurity #bugbounty #vulnerability #opensource #linux #cve #tools #mitre #usa

New Forensics Tool: DFIR-Companion 🆕
An AI pair of eyes sitting over your shoulder, catching what you miss while you're deep in an investigation.

Repo: https://github.com/hasamba/DFIR-Companion
Landing page: https://hasamba.github.io/DFIR-Companion/

Honestly, it started out of frustration.

I'm sitting on an investigation, open Velociraptor, spot an interesting lead, start digging into it, find another lead, and so on, and then suddenly I realize I completely forgot to go back to the other findings from the first artifact.

The sheer amount of information you need to process during an investigation is simply more than one pair of eyes can handle, no matter how much coffee you've had.

So I started building something to help myself and it ended up going somewhere I didn't expect.

The original idea was a browser extension that takes screenshots every few seconds, so I could scroll back and see what I missed. Pretty dumb idea in hindsight, actually. But then the question came up: if I already have all those screenshots, why not let AI go through them while I work?

And from there it exploded.

Today it's a real-time dashboard that updates live as I investigate. It identifies findings, automatically builds an event timeline, extracts IOCs and enriches them from multiple sources, creating playbook that suggests what to check next, suggest hunt queries for velociraptor, run them and collect back the results, checks for data leaks, and answers the standard questions every investigation report needs: access vector, lateral movement, privilege escalation, etc. If a client confirms a finding-"that's legit, it's our weekly scan", one click and the entire analysis updates accordingly.

The coolest part, to me, is that this started as a Velociraptor-specific solution but in practice became an AI layer on top of every tool I have open in the browser: SIEM, Security Onion, Splunk4DFIR, VolWeb, you name it. Even tools with no built-in AI suddenly get smarter, and all the data consolidates in one place instead of me jumping between ten tabs.

Important to understand: this is NOT another detection layer. Your Sigma, YARA, and Suricata rules are already doing their job. This tool is the layer after detection-it takes all the verdicts from your tools, correlates them, and builds the "so what."

The tool didn't stop at screenshots either. You can feed it almost any DFIR output and it will automatically detect the format and import it deterministically (no burning tokens on AI for that).

Additional features:
• Data correlation
• Threat intel enrichment — with OPSEC in mind
• AI input anonymization
• Asset ↔ IoC graph
• Targeted query generation
• Export to multiple platforms
• Free-form case Q&A against an LLM
and much more...

📎 If you work in DFIR, Blue Team, or SOC — I'd love for you to try it out, open issues, suggest features, submit PRs, or just tell me what you think.

#DFIR #CyberSecurity #IncidentResponse #BlueTeam #ThreatHunting #OpenSource #MITRE #velociraptor

I try to get a #CVE for weeks, no response!
Neither mitre nor github is responding at all :/

Does someone know more?!?!

#security #mitre #github #report #foss #WoodpeckerCI

From edge appliance to enterprise compromise: Multi-stage Linux intrusion via F5and Confluence - https://www.redpacketsecurity.com/from-edge-appliance-to-enterprise-compromise-multi-stage-linux-intrusion-via-f5and-confluence/

#threatintel
#edge-appliances
#linux-intrusion
#confluence
#credential-relay
#mitre-attack-techniques

Mitre (MTRE3) reforça controle acionário e mercado monitora próximos movimentos

🇧🇷 Leia mais: https://guiadoinvestidor.com.br/mercado/mitre-mtre3-reforca-controle-acionario-e-mercado-monitora-proximos-movimentos/

#Mercado #Mitre #MTRE3

Resulting from funding gaps and idiotic shifts in priorities the U.S.A. is now woefully under investing in our core CyberDefense Ecosystem....

National Institute of Standards and Technology (NIST) is no longer enhancing all Common Vulnerabilities and Exposures (CVEs) with analysis and severity indicators, and instead NIST will prioritize enriching a much narrower set of security vulnerabilities.

Related: In April 2025, a funding gap by in DHS appropriations threatened to cease CVE operations entirely —which would have creating systemic risk for global vulnerability management. An emergency funding extension was implemented to avoid a full on crisis. https://www.justsecurity.org/136914/nist-cant-keep-up/ #NIST #MITRE #CVEs #NVD #Security #Risk #CyberSecurity #CyberDefence #CyberInfrastructure #AI #AISecurity #CISA #DHS #Vulnerability #ThreatIntelligence

Accelerating detection engineering using AI-assisted synthetic attack logsgeneration - https://www.redpacketsecurity.com/accelerating-detection-engineering-using-ai-assisted-synthetic-attack-logsgeneration/

#threatintel
#AI-assisted-logs
#synthetic-logs
#detection-engineering
#MITRE-ATT&CK
#cybersecurity-logs

🚀 MITRE is hiring a UX/UI Engineer in Colorado Springs!

Earn up to $118K/year while building innovative digital experiences.

Apply now 🔗 https://studentscircles.com/mitre-hiring-ux-ui-engineer-in-colorado-earn-up-to-118k/

#UXUIJobs #ColoradoSpringsJobs #TechJobsUSA #UIUXDesigner #ColoradoJobs #MITRE #UXEngineer #USAJobs

⚠️ Disclaimer: This content is created for informational and educational purposes only. All logos, trademarks, and brand names belong to their respective owners.