II.
LibraryProcess overview
Reference · livelib-process:security-research--threat-intelligence-research
threat-intelligence-research overview
Collection and analysis of threat intelligence including APT tracking, malware campaigns, TTPs analysis, and IOC generation. Produces actionable intelligence for defensive operations using MITRE ATT&CK mapping and STIX/TAXII standards.
Attributes
displayName
threat-intelligence-research
description
Collection and analysis of threat intelligence including APT tracking, malware campaigns,
TTPs analysis, and IOC generation. Produces actionable intelligence for defensive operations using
MITRE ATT&CK mapping and STIX/TAXII standards.
libraryPath
library/specializations/security-research/threat-intelligence-research.js
specialization
security-research
references
- - MITRE ATT&CK: https://attack.mitre.org/ - STIX: https://oasis-open.github.io/cti-documentation/stix/intro
example
const result = await orchestrate('specializations/security-research/threat-intelligence-research', {
projectName: 'APT29 Campaign Analysis',
researchFocus: 'apt-tracking',
sources: ['osint', 'malware-samples', 'incident-reports']
});
usesAgents
- threat-intel-analyst
Outgoing edges
lib_applies_to_domain1
- domain:cybersecurity·DomainCybersecurity
lib_belongs_to_specialization1
- specialization:security-research·Specialization
lib_implements_workflow1
- workflow:vulnerability-management·Workflow
uses_agent1
- lib-agent:security-research--threat-intel-analyst·LibraryAgentThreat Intelligence Analyst Agent
Incoming edges
None.