Articles — CTI, Detection Engineering, Malware Analysis

Featured 1200km Articles

Locally hosted articles with stable URLs and project context.

From Log to Report: Using AdversaryGraph to Turn Firewall and EDR Noise Into a CTI Investigation

End-to-end AdversaryGraph workflow for log analysis, IOC extraction, enrichment, relationship graph review, ATT&CK leads, and analyst-ready reporting.

AdversaryGraphIOC investigationAI log analysis

AdversaryGraph v2.5: New Name, New Release, Full AI CTI Platform Capability Map

Capability map for the self-hosted CTI platform: ATT&CK/ATLAS mapping, IOC enrichment, feeds, sector intelligence, exports, and detection handoff.

CTI platformATT&CKDetection engineering

AdversaryGraph v4 Malware Analysis Documentation

Official module documentation for MalwareGraph-backed static triage, strings, unpacking, decompilation/debug, AI summaries, and gated dynamic workflows.

Malware analysisMalwareGraphDocumentation

AdversaryGraph Platform Guide

Screenshot-backed guide for the current platform: Navigator, AI analysis, IOC workflows, sector intelligence, operations, pipeline, reports, and malware analysis.

Platform guideScreenshotsWorkflow

Articles for CTI, detection engineering, malware analysis, and AI-assisted security work.

Featured 1200km Articles

From Log to Report: Using AdversaryGraph to Turn Firewall and EDR Noise Into a CTI Investigation

AdversaryGraph v2.5: New Name, New Release, Full AI CTI Platform Capability Map

AdversaryGraph v4 Malware Analysis Documentation

AdversaryGraph Platform Guide