AI Actions prompt: Threat hunt hypothesis generation

FundamentalsAI Actions prompt: Threat hunt hypothesis generationExtract procedures from articles to inform threat hunt planningDescriptionThis AI Actions prompt creates a threat hunt hypotheses in a tabular format that’s easy to read and integrate into reports or presentations. The hypotheses are derived from the selected articles, and procedures are extracted with sufficient detail to perform a real threat hunt. This enables hunters to plan and run actionable hunts quickly without spending hours reading dense threat intelligence reports.Run this prompt against articles in your AI Feeds about your adversaries of concern.Try Ai ActionsPrompt Structure<role>Lead threat hunter</role>

<task>Create a table of attack procedures from the provided article as threat hunt hypotheses</task>

<table_structure>
| Procedure | Description | Logs |
|———–|————-|——|
| Short title | Detailed description with patterns | Relevant logs and Event IDs |
</table_structure>

<guidelines>
– Provide detailed technical information
– Structure the information according to the provided table structure format
– Include only actionable procedures for threat hunting
– Focus on specific search patterns
– Avoid generic or ambiguous information
– Include citations
</guidelines>OutputWe ran this prompt across an AI Feed showing articles about threat actors from Russia. The output clearly provides the procedures in a three-column table as specified in the instructions. The prompt can be saved in the prompt library and reused to get consistent results on other articles.AI Action Output: Table of attack procedures as threat hunt hypothesesTry AI Actions in Feedly Threat IntelligencePersonalize your prompts and get the intelligence you need in seconds.Try Ai Actions
Source: Internet Gov forum