The Benefits of LLM Technology for Law Enforcement Leveraging LLMs for CTI – real world example LUMINAR leverages a large language model to provide a contextualized and personalized daily intelligence feed to cyber analysts by analyzing posts from diverse cyber threat sources, including deep and dark web forums, marketplaces and chat rooms. For each analyzed post, the system automatically: + Extracts and generates new cyber-related entities, including threat actor, country of origin, name of campaign, and more + Creates relations between entities, such as the threat actor, country of origin and targeted entities + Summarizes the content of the post + Extracts TTPs (Tactics, Techniques and Procedures) according to the MITRE ATT&CK framework This capability provides valuable and timely intelligence insights with targeted threat data relevant to each security organization. Although criminals and bad actors can exploit LLMs to scale up their activities, law enforcement authorities can also derive advantages from these technologies. Incorporating LLM technology into the software solutions utilized by authorities can assist investigators and analysts in performing their work faster and more effectively. Leveraging an LLM for LUMINAR’s intelligence feed enables far stronger capabilities than traditional text analytics. The analysis extends beyond the text contained in the posts being analyzed, as the model leverages its vast knowledge base to create new entities and establish connections to content that may not be explicitly stated in the analyzed text. For example, when analyzing a post about phishing or ransomware, the model can infer the specific attack technique used and tag it with the MITRE ID. In addition, in the case of texts or posts which contain slang, the LLM can leverage its knowledge base to understand those terms and parse the meaning in a cyber threat intelligence context. Cognyte’s LUMINAR is a Cyber Threat Intelligence solution (CTI) that enables SOC and intelligence teams to more accurately identify external threats, prevent attacks, and ensure resilience. Large Language Models and ChatGPT 2 Intro 1 Leveraging LLMs for Crime 3 The Benefits for Law Enforcement 4 The Impact of Future LLM 5 About Cognyte 6 The Benefits for Law Enforcement 4