Uncoder AI transforms complex CrowdStrike queries into clear decision trees, helping SOC teams detect curl.exe misuse with SOCKS proxies and .onion domains for faster, more effective threat response.

SOC Prime

02.05.2025

Visualizing clfs.sys Threat Activity in Microsoft Defender with Uncoder AI’s Decision Tree | SOC Prime

AI Decision Tree in Uncoder AI reveals Microsoft Defender KQL logic tracking clfs.sys execution from user-level or temp directories.

SOC Prime

02.05.2025

Enhancing Cortex XQL Threat Detection with Full Summary in Uncoder AI | SOC Prime

Full Summary in Uncoder AI explains XQL logic detecting HTTP to low-reputation TLDs or suspicious file types.

SOC Prime

02.05.2025

Detecting Covert curl Usage with Uncoder AI’s Decision Tree in Carbon Black | SOC Prime

AI Decision Tree from Uncoder AI breaks down Carbon Black detection logic for curl.exe used with SOCKS proxies and .onion destinations.

SOC Prime

02.05.2025

Detecting Covert TOR Access in Microsoft Sentinel with Uncoder AI’s Decision Tree | SOC Prime

AI Decision Tree in Uncoder AI visualizes Sentinel KQL logic for detecting curl-based TOR traffic via SOCKS proxy and .onion domains.

SOC Prime

01.05.2025

Uncovering PUA: NimScan Activity with Full Summary in Uncoder AI | SOC Prime

Uncoder AI’s Full Summary simplifies detection logic for NimScan-related Sysmon events in Microsoft Sentinel, enabling faster threat triage.

SOC Prime

01.05.2025

How Uncoder AI Clarifies CVE-2024-35250 Detection in Cortex XSIAM | SOC Prime

Uncoder AI’s Short Summary demystifies Cortex XSIAM detection logic for CVE-2024-35250, enabling rapid response to suspicious ksproxy.ax module activity.

SOC Prime

01.05.2025

Detecting NimScan Activity in SentinelOne with Uncoder AI | SOC Prime

Uncoder AI summarizes a SentinelOne rule detecting NimScan via image path or IMPhash, improving visibility into unwanted apps.

SOC Prime

30.04.2025

Short AI Summaries Make Complex Detection Instantly Understandable | SOC Prime

Uncoder AI generates concise summaries for complex Google SecOps queries, helping SOC teams grasp detection intent instantly.

SOC Prime

30.04.2025

AI-Powered Query Optimization in Uncoder AI | SOC Prime

Uncoder AI enhances Microsoft Sentinel query performance using local LLM-based analysis with private-cloud hosted AI.

SOC Prime

30.04.2025

Uncoder AI Automates Cross-Language Rule Translation with Hybrid AI | SOC Prime

SOC Prime’s Uncoder AI converts Microsoft Sentinel KQL into Splunk SPL using AI-enhanced logic translation across 21 supported platforms.

SOC Prime

30.04.2025

Rule/Query Full Summary with AI | SOC Prime

Uncoder AI delivers full AI-generated summaries for detection rules, helping analysts quickly grasp complex logic in plain, structured language.

SOC Prime

30.04.2025

CVE-2025-32432: Critical Craft CMS Vulnerability Is Actively Exploited in Zero-Day Attacks, Leads to Remote Code Execution | SOC Prime

CVE-2025-32432 RCE vulnerability in Craft CMS is chained with CVE-2024-58136 in the Yii framework for zero-day attacks aimed at data theft.

SOC Prime

30.04.2025

Rule/Query’s Decision Tree Summarization with AI | SOC Prime

Uncoder AI breaks down complex queries into step-by-step decision trees, enabling faster analysis, validation, and communication across teams.

SOC Prime

30.04.2025

Password Discovery via Notepad: How Uncoder AI Simplifies SPL Detection Logic | SOC Prime

Uncoder AI explains SPL logic detecting Notepad launched via Explorer to access password-labeled files, speeding up analysis.

SOC Prime

28.04.2025

Access Uncoder AI Core Capabilities via API

Leverage the full power of Uncoder AI through API to automate translation, validation, and IOC query generation across multiple detection platforms.

SOC Prime

26.04.2025

Detection Engineering IDE with Smart Autocomplete

Uncoder AI brings IDE-level convenience to detection engineering with syntax highlighting, auto-language detection, and contextual autocomplete based on Sigma rules.

SOC Prime

26.04.2025

Uncoder AI Use Case Documentation with Confluence Integration

Uncoder AI now supports automatic use case documentation in Confluence, helping detection engineers streamline their workflow by saving intelligence and code together in a structured format.

SOC Prime

26.04.2025

Hot OSINT Indicators in Uncoder AI

Uncoder AI offers instant access to publicly available TLP:CLEAR OSINT-based IOCs, sourced from CERT-UA. Enable rapid IOC query generation for threat detection workflows.

SOC Prime

26.04.2025

Automated Rule Deployment to Microsoft Sentinel, Google SecOps & Elastic Stack

Deploy detection rules directly from Uncoder AI into Microsoft Sentinel, Google SecOps, and Elastic Stack to streamline threat response and reduce engineering overhead.

SOC Prime

26.04.2025

AI-Enhanced Rule Conversion into Roota Format with Metadata

Instantly enrich platform-specific detection content with triage, false positive analysis, log source guidance, and MITRE tagging using SOC Prime’s Roota transformation feature.

SOC Prime

26.04.2025

Real-Time Rule Customization for Seamless Detection Tuning

Customize detection rules on the fly with Uncoder AI’s profiles, presets, and field mappings to match your environment and reduce alert fatigue.

SOC Prime

26.04.2025

Translate Sigma Rules into 48 Detection Languages with Uncoder AI

Uncoder AI enables seamless translation of Sigma rules into 48 production-grade detection languages across SIEM, EDR, XDR, and Data Lakes, reducing overhead and increasing portability.

SOC Prime

26.04.2025

Centralized Rule Storage with SOC Prime’s Repository Integration

Save detection content with full metadata to SOC Prime’s secure infrastructure or custom repositories like GitHub, GitLab, and Azure DevOps, enabling a complete detection engineering lifecycle.

SOC Prime

26.04.2025

ToyMaker Activity Detection: Initial Access Brokers Compromise Hosts in Critical Infrastructure Organizations via SSH and File Transfer Utilities | SOC Prime

Detect ToyMaker attacks, IAB hackers using SSH and file transfer tools to hit the critical infrastructure sector, with Sigma rules from SOC Prime Platform.

home›SOC Prime›Software

SOC Prime - Software

Detect APT28 Attacks: russian GRU Unit 26156 Targets Western Logistics and Technology Companies Coordinating Aid to Ukraine in a Two-Year Hacking Campaign | SOC Prime

ELPACO-Team Ransomware Attack Detection: Hackers Exploit Atlassian Confluence Vulnerability (CVE-2023-22527) to Gain RDP Access and Enable RCE | SOC Prime

CVE-2025-4427 and CVE-2025-4428 Detection: Ivanti EPMM Exploit Chain Leading to RCE | SOC Prime

Detect CVE-2025-31324 Exploitation by Chinese APT Groups Targeting Critical Infrastructure | SOC Prime

What Is Generative AI (GenAI)? | SOC Prime

Noodlophile Stealer Detection: Novel Malware Distributed Through Fake AI Video Generation Tools | SOC Prime

Gunra Ransomware Detection: New Threat Targets Various Industries Globally Using Double-Extortion Tactics and Advanced Malicious Behaviors | SOC Prime

What Is Zero-Trust Security | SOC Prime

TerraStealerV2 and TerraLogger Detection: Golden Chickens Threat Actor Behind New Malware Families | SOC Prime

Uncovering Insider Risks with Full Summary in Uncoder AI: A Microsoft Defender for Endpoint Case | SOC Prime

CVE-2025-31324 Detection: SAP NetWeaver Zero-Day Under Active Exploitation Exposes Critical Systems to Remote Code Execution | SOC Prime

CrowdStrike Child Process Detection Enhanced by Uncoder AI’s Short Summary | SOC Prime

Exposing Event Log Tampering with Uncoder AI’s AI Decision Tree for Splunk Queries | SOC Prime

Investigating Suspicious Rsync Shell Activity with Uncoder AI and Carbon Black Query Language | SOC Prime

Detecting NimScan Execution with Uncoder AI’s Decision Tree for Cortex XQL | SOC Prime

Visualizing Malicious curl Proxy Activity in CrowdStrike with Uncoder AI | SOC Prime

Visualizing clfs.sys Threat Activity in Microsoft Defender with Uncoder AI’s Decision Tree | SOC Prime

Enhancing Cortex XQL Threat Detection with Full Summary in Uncoder AI | SOC Prime

Detecting Covert curl Usage with Uncoder AI’s Decision Tree in Carbon Black | SOC Prime

Detecting Covert TOR Access in Microsoft Sentinel with Uncoder AI’s Decision Tree | SOC Prime

Uncovering PUA: NimScan Activity with Full Summary in Uncoder AI | SOC Prime

How Uncoder AI Clarifies CVE-2024-35250 Detection in Cortex XSIAM | SOC Prime

Detecting NimScan Activity in SentinelOne with Uncoder AI | SOC Prime

Short AI Summaries Make Complex Detection Instantly Understandable | SOC Prime

AI-Powered Query Optimization in Uncoder AI | SOC Prime

Uncoder AI Automates Cross-Language Rule Translation with Hybrid AI | SOC Prime

Rule/Query Full Summary with AI | SOC Prime

CVE-2025-32432: Critical Craft CMS Vulnerability Is Actively Exploited in Zero-Day Attacks, Leads to Remote Code Execution | SOC Prime

Rule/Query’s Decision Tree Summarization with AI | SOC Prime

Password Discovery via Notepad: How Uncoder AI Simplifies SPL Detection Logic | SOC Prime

Access Uncoder AI Core Capabilities via API

Detection Engineering IDE with Smart Autocomplete

Uncoder AI Use Case Documentation with Confluence Integration

Hot OSINT Indicators in Uncoder AI

Automated Rule Deployment to Microsoft Sentinel, Google SecOps & Elastic Stack

AI-Enhanced Rule Conversion into Roota Format with Metadata

Real-Time Rule Customization for Seamless Detection Tuning

Translate Sigma Rules into 48 Detection Languages with Uncoder AI

Centralized Rule Storage with SOC Prime’s Repository Integration

ToyMaker Activity Detection: Initial Access Brokers Compromise Hosts in Critical Infrastructure Organizations via SSH and File Transfer Utilities | SOC Prime

home
›
SOC Prime
›
Software