Crimson: Empowering Strategic Reasoning in Cybersecurity through Large Language Models

arXiv:2403.00878v1 Announce Type: new
Abstract: We introduces Crimson, a system that enhances the strategic reasoning capabilities of Large Language Models (LLMs) within the realm of cybersecurity. By correlating CVEs with MITRE ATT&CK techniques, Crimson advances threat anticipation and strategic defense efforts. Our approach includes defining and evaluating cybersecurity strategic tasks, alongside implementing a comprehensive human-in-the-loop data-synthetic workflow to develop the CVE-to-ATT&CK Mapping (CVEM) dataset. We further enhance LLMs' reasoning abilities through a novel Retrieval-Aware Training (RAT) process and its refined …

amp arxiv att capabilities cs.ai cs.cr cves cybersecurity defense language language models large llms mitre mitre att&amp realm reasoning strategic system techniques threat