securitygpt is a package that makes makes common tasks that a security engineer does easy using generative LLMs.
As a security engineer, you dont want to worry about writing correct prompts, we have taken care of that for you.
from gpts.safegpt.anonymize import encrypt, decrypt, get_mappings, decrypt_dataframe
anonymize_result, analyzer_results = encrypt(alert_text)
print (anonymize_result.text)
mapping_df = get_mappings(alert_text, analyzer_results,anonymize_result)
from tools.openai import chat_complete
system_content = "you are an awesome information security engineer, well versed with incident response analysis"
prompt_string = "for this alert and remediation below, write an incident report: " + anonymize_result.text
completion = chat_complete (system_content=system_content, user_content=prompt_string).completion
print (completion["choices"][0].message.content)
mapping_df = get_mappings(alert_text, analyzer_results,anonymize_result)
decrypted_text = decrypt(completion["choices"][0].message.content, mapping_df)
print (decrypted_text)
from vulngpt.cve_gpt import summmarize_cve
summmarize_cve("CVE-2021-36934")
{
"base_score": 7.8,
"severity": "High",
"attack_vector": "Local",
"attack_complexity": "Low",
"product_name": "Unknown",
"company_name": "Unknown",
"cwe_name": "CWE-269",
"versions_affected": "Unknown",
"versions_not_affected": "Unknown",
"applicable_operating_systems": "Unknown",
"application_configuration_needed": "Unknown",
"versions_fixed": "Unknown",
"remediation": {
"patch_remediation": "Unknown",
"network_remediation": "Unknown",
"host_remediation": "Unknown",
"application_remediation": "Unknown",
"database_remediation": "Unknown",
"operating_system_remediation": "Unknown"
},
"summary": "This is a potential security issue. Please refer to the provided links for more information."
}
Explanation - https://www.linkedin.com/pulse/threat-knowledge-graphs-using-generative-ai-venkat-pothamsetty
import sys
sys.path.append('../')
from securitygpt.gpts.researchgpt.graphgpt import draw_threat_graph
url = "https://www.wiz.io/blog/38-terabytes-of-private-data-accidentally-exposed-by-microsoft-ai-researchers"
objective = "in depth understand the attack details and remediations exhaustively"
dot = draw_threat_graph(url,objective)