richardk/iso27diy-corp
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

cleaning up Sparks

Browse source
This commit is contained in:
Richard Kranendonk 2026-05-14 16:57:06 +02:00
parent b8d1d4e02f
commit 704e6dd07f
162 changed files with 393 additions and 1041 deletions
Download patch file Download diff file Expand all files Collapse all files

30
Corpus/Sparks/Create a threat analysis chatbot.md
View file

@ -1,30 +0,0 @@
---
tags:
- llm
---
[Source](https://www.linkedin.com/posts/mbundgaard_cyber-threat-landscape-analysis-activity-7274406690442149888-Pf-X), retrieved 20-12-24
Create your own cyber threat analysis GenAI chatbot in 30 minutes.
Free of cost and code.
1) Don't waste your time manually collecting every report from different websites behind forms. Go to [Jacob Wilson](https://www.linkedin.com/in/jacobdjwilson/)'s [github repo](https://github.com/jacobdjwilson/awesome-annual-security-reports/tree/main/) that's updated with all relevant and current reports.
2) Don't waste time reading through 20-40 reports that are almost identical. Instead, upload them to [notebooklm.google.com](http://notebooklm.google.com/) and let AI do the heavy lifting.
3) Remember to upload/link to your infosec taxonomy. I recommend [VERISframework.org](https://verisframework.org) as it is used by Cyentia Institute and Verizon.
4) Don't use any old GPT. Prompt your notebook to get actual references and prevent hallucinations.
5) Don't return to the same sources with annotation and manual review. Instead, write and adjust prompts to your specific purposes.
You now have your very own reliable cyber threat chat bot to help your analyze any problem.
**Prompt suggestion:**
`Context: Doing an annual analysis of the threat landscape surrounding a specific enterprise.`
`The enterprise is a [region][industry][services] company. It has around [number] employees and annual revenue of [your annual revenue].`
`Please provide a two-part analysis:`
1. `A summary of the relevant industry research. The summary must adhere to the [taxonomy] framework. Each section must include examples from the source material and/or statistics such as forecasting or historical changes.`
2. `A list of the 5-10 most relevant threat scenarios to be included in a subsequent risk assessment. Provide the scenarios in a table format. The table must include the following columns [column 1], [column 2], [column 3] [etc] and strictly adhere to [taxonomy).`
For columns I suggest Threat actor, activity and attribute.