Blog
The dogesec blog
-
Fighting Disinformation: Classifying Your Research Using Standardised Disinformation Tactics and Techniques
RESEARCH January 06, 2025
Our intel team is increasingly using the DISARM framework to classify parts of our research as disinformation campaigns continue increase. In this post I will introduce the DISARM data structure. -
Fortifying AI: How MITRE ATLAS Shields Artificial Intelligence from Adversarial Threats
RESEARCH December 30, 2024
Discover how MITRE ATLAS is helping to defend AI systems as I share a detailed explanation of how the knowledge-base is architected. -
Enriching Vulnerabilities to Create an Intelligence Graph
RESEARCH December 23, 2024
We do a lot of our research into vulnerabilities. To aid this, we enrich CVEs using many remote sources of intelligence. Here is a walk-through showing how we connect CVEs to EPSS scores, CISA KEVs, MITRE ATT&CK, CWEs, and CAPECs. -
How CTI Butler Creates a Threat Intelligence Graph of Common Frameworks
RESEARCH December 16, 2024
CTI Butler links many common knowledge bases, for example linking MITRE ATT&CK to CAPEC objects, to improve the context of our research. This post describes the logic CTI Butler employs behind the scenes to do this. -
An Analysis of the Latest Sigma Rules Release
RESEARCH December 09, 2024
In this post I walk you through the database queries we use to compare Sigma Rules releases. We use these to identify the detail of what has changed before we push any updates internally. -
Importing Sigma Rules into a Threat Intelligence Platform
RESEARCH December 02, 2024
We needed a way to link all of our threat intel research to detection rulesets in one place. Our solution; model Sigma Rules as STIX objects. -
An Analysis of the Latest CWE Release
RESEARCH November 25, 2024
Last week saw the release of CWE v4.16. I took a deeper look into the latest release so you don't have to. -
An Analysis of the Changes in ATT&CK Version 16.0
RESEARCH November 04, 2024
Your handy guide to streamlining upgrades of MITRE ATT&CK by comparing the changes made between releases. -
Bad Software Keeps Cyber Security Companies in Business
RESEARCH October 28, 2024
Despite countless frameworks, best practices, blog posts... so many developers still hardcode credentials into their code. -
17,375 CVEs in the NVD Backlog, and Counting
RESEARCH October 07, 2024
The NVD are still struggling to keep up with the backlog of CVEs to be analysed. With 26,876 added since February, it is no surprise. -
Analysing 25 Years of CVEs
RESEARCH September 30, 2024
The CVE List was launched in September 1999, listing 321 CVE records. 25 years later there are 265,767 CVE records. -
PSA: MITRE ATT&CK is More Than Tactics and Techniques
RESEARCH July 07, 2024
Software, Data Sources, Data Components, Campaigns, and more, make MITRE ATT&CK even more powerful than you might first realise. In this post I uncover the parts of ATT&CK you might not be aware of.