Researchers have developed OntoLogX, an AI agent designed to extract Cyber Threat Intelligence (CTI) from raw cybersecurity logs. The system utilizes Large Language Models (LLMs) combined with a lightweight log ontology and Retrieval Augmented Generation (RAG) to transform unstructured log data into structured Knowledge Graphs (KGs). OntoLogX also predicts MITRE ATT&CK tactics, linking low-level log evidence to higher-level adversarial objectives, and has demonstrated robust KG generation and accurate mapping of adversarial activity on benchmark and real-world datasets. AI
IMPACT Enhances CTI extraction from logs, potentially improving threat detection and response capabilities.
RANK_REASON Academic paper detailing a new AI agent for cybersecurity log analysis.
- Cyber Threat Intelligence
- Hugging Face
- Knowledge Graphs
- Large Language Models
- Luca Cotti
- MITRE ATT&CK
- OntoLogX
- Retrieval Augmented Generation
AI-generated summary · Google Gemini · from 1 sources. How we write summaries →
