技術摘要(英)
Event-driven Attack Kill Chain Correlation & Tracing Detection can automatically collect information from open source and analyze it. Through combine information security threats and the framework of MITRE ATT&CK, cybersecurity forensics analysts could quickly identify the overview of enterprise intranet and host security. It also uses knowledge graph technology to assist in pursuit, detection, and defense, which shortens the time required for enterprises to respond and effectively enhances the strength and flexibility of defense.