π Security Tool Cheatsheet
Alex Morgan — Senior Penetration Tester
Why AI Changes the Game for Cybersecurity Analysts
In the fast-paced world of cybersecurity, speed and efficiency are paramount. AI tools can streamline workflows, automate mundane tasks, and provide insightful analysis that enhances decision-making processes. This cheatsheet is designed to arm cybersecurity analysts with practical, copy-paste-ready prompts that can be used with AI models like ChatGPT and Claude, to maximize productivity and improve outcomes.
Before You Start: How to Set Context Properly
Setting context is critical when using AI. Clearly defining the role you want the AI to play and the specific problem you’re addressing can dramatically improve the quality of the responses. Use role prompting to specify the type of analyst (e.g., SOC analyst, threat hunter) and provide context for your inquiry.
Core Prompts Cheatsheet
Prompt: “As a cybersecurity analyst, summarize the latest threat intelligence reports about ransomware attacks. Include key actors and tactics used.”
Use Case: Use when needing a quick overview of current threats.
Customization: Specify the type of threat or actors for more tailored results.
Prompt: “Given this simulated log data, identify any anomalous behavior.
Log Data: [insert log data here]”
Use Case: For rapid identification of suspicious activities in logs.
Customization: Adjust the log data based on your environment.
Prompt: “Draft an incident report based on the following summary: [insert incident summary]. Include all necessary sections like timeline, impact assessment, and remediation steps.”
Use Case: Speed up incident reporting when under pressure.
Customization: Add specific incidents or outcomes relevant to your case.
Prompt: “List steps I should follow for a penetration test on a web application targeting OAuth vulnerabilities. Include tools and techniques.”
Use Case: Useful for planning various penetration tests efficiently.
Customization: Modify the type of application or vulnerabilities.
Prompt: “Create content for a cybersecurity awareness training session focused on phishing attacks. Include examples and best practices.”
Use Case: Helps generate educational materials quickly.
Customization: Tailor it for different audiences, like employees vs. executives.
Weak vs Strong Prompt Examples
Advanced Prompt Techniques
Use advanced techniques to improve your prompts:
- Role Prompting: Clearly define the role you want AI to assume, such as “As a SOC analyst…” to tailor responses.
- Chain-of-Thought: Encourage the AI to explain its reasoning, such as asking it “Why” after a specific response to understand its logic.
- Few-Shot Examples: Provide minimal examples within your prompt to guide AI on the desired output format.
- Output Formatting: Request specific formats (like bullet points or tables) to enhance readability.
Claude vs ChatGPT: Which Works Better For This?
Both Claude and ChatGPT have their strengths in cybersecurity applications:
- Claude: Strong in understanding context and generating detailed reports with logical structure.
- ChatGPT: Excels at retaining conversational context which is useful for iterative queries and follow-ups.
Tips for Getting Consistent Results
To ensure you get the best results out of your AI queries:
- Be Specific: Clearly specify the task and context to minimize ambiguity.
- Iterative Refinement: Donβt hesitate to refine prompts based on previous responses. Ask follow-up questions.
- Context is Key: If you’re discussing a specific incident or data set, include that context in the prompt.
Quick Reference: All Prompts in One Place
- Researching Threat Intelligence
- Analyzing Log Files
- Creating Incident Reports
- Penetration Testing Planning
- User Awareness Training Content