5 Most Useful GPTs For Cybersecurity Teams

In early January 2024, OpenAI launched the GPT Store where users can discover (and create) custom versions of ChatGPT that combine instructions, extra knowledge, and any combination of skills. While thousands of GPTs have been launched across dozens of categories – including productivity, programming, education, and writing – the team at Qevlar and I are, naturally, most interested in those that could help offensive and defensive cybersecurity teams identify and remediate threats.

So, without further ado, here are the most useful GPTs we’ve discovered so far. Are we missing one that you love to use? Let us know!

Betterscan.io AI Code Analyzer

As the name suggests, this GPT was designed by Betterscan.io to analyze code in multiple programming languages, providing extensive support for developers and other cybersecurity practitioners. The agent offers security-oriented feedback, highlighting potential security flaws in code and offering best practice tips for improvement.

Given the growing importance of secure coding practices in software development, this is the perfect addition to DevSecOps’ arsenal and is an essential tool for maintaining robust, secure software.

Try this conversation starter:

I want you to act as a security engineer. Your task is to review the following code and find potential security bugs and typos. If no bug is found, just output \"No obvious bug found.\" Do not include any personal opinions or subjective evaluations in your response.

GP(en)T(ester)

GP(en)T(ester) serves as a virtual assistant, offering guidance, suggestions, and insights to cybersecurity professionals, specifically with the goal of supporting penetration testing.

Simply ask questions and share scenarios related to penetration testing or ethical hacking, and the agent (who uses a supportive tone that’s perfect for training more junior practitioners) will provide guidance on a wide range of topics within the domain.

Note: Today, the GPT is only accessible in English and Spanish.

Try these conversation starters:

• Explain the concept of SQL injection
• I've found an open port, what's next?
• Give me a hint for getting a flag

HackTricksGPT

Seeking expert guidance on a particular cybersecurity issue? Whether you’re a beginner or an advanced practitioner, HackTricksGPT can offer valuable insights on the latest cybersecurity trends, techniques for defending against cyber threats, and advice on best practices in digital security.

Thanks to its extensive knowledge base which draws from the ‘HackTricks’ book series, the agent always provides detailed responses and practical solutions. Bonus: Responses are tailored to the user’s level of expertise, making it an invaluable resource to help solve specific security challenges and promote continuous learning.

Try these conversation starters:

• What are the steps for performing a penetration test?
• Give me the most common web vulnerabilities?
• How could Github Actions be compromised?

MagicUnprotect

MagicUnprotect focuses on a critical and sophisticated aspect of cybersecurity: malware evasion techniques.

The agent facilitates interaction with the Unprotect DB, offering a streamlined way to understand malware threats and evasion techniques, including anti-sandboxing and anti-forensics. It also supports the creation of YARA, Sigma, and Capa rules and is a useful tool for the analysis and decoding of malware.

Try these conversation starters:

• Generate a graph that summarizes the number of techniques by category
• Retrieve information about anti-forensic techniques
• Show me a code example for Process Hollowing

ATT&CK Mate

This GPT can answer any question related to the MITRE ATT&CK framework, providing detailed insights and answers in a structured response format. Because the agent gathers information from a variety of credible sources, cybersecurity professionals – especially those focussing on threat intelligence and security analysis - can inquire about threats and defense strategies, and receive trustworthy context and advice that can be applied to real-world scenarios.

Try these conversation starters:

• What are the latest Initial Access techniques?
• What threat actors modify GPOs to execute code?
• What are the top 5 data sources for ICS techniques?

Learn more about Qevlar

Qevlar AI helps empower SOC teams to effectively prioritize and respond to cyber threats. Here’s how…

Autonomous agents conduct efficient and exhaustive investigations of security alerts to accurately identify genuine threats and eliminate false positives. And, thanks to comprehensive reports that outline every source and input that influences an alert’s dynamic risk score, SOC analysts can easily review and validate end-to-end investigations. The best part? No set-up, automation scripts, playbooks, or manual analysis is required.

Book a demo to learn more about how Qevlar can help your blue team fortify your organization’s security defenses.