Cyberdyne Ventures is a group of longtime security researchers and data scientists active in the research community. Most of us are veterans of security product companies and startups you may have heard of. Whenever we have a break, we start building. We place tooling made for practitioners, by practitioners, above shiny things made for demos or paid speaking slots. This year we have a few projects underway:
SKYNET is a project where we are taking a new approach to the twin problems of 1) alert fatigue and 2) signal / noise or "false positives." We also have found a better way to integrate ML and AI tooling with conventional detections. We did a release at DEF CON 2024, presented twice at Blackhat MEA, and are continuing to present at cons.
DUNE is a project for applying machine learning to threat hunting and detection with an initial focus on exfiltration. Most of the tools in there are FOSS but not all (we have dashboards for some popular products in addition to notebooks.)
There are also a few private projects. One is making an AI interface to the Skynet project where we believe we can generate better answers with better prompts, from our knowledge graph, than are obtained by yeeting masses of alerts into a RAG implementation. Another is working on dynamic prioritization and prediction of certain detection data types; more to come on that in 2025.
