search

intelowlproject / IntelOwl

IntelOwl: manage your Threat Intelligence at scale
https://intelowlproject.github.io
GNU Affero General Public License v3.0
3.83k stars 439 forks source link

[Analyzer] ChatGPT #1349

Open mlodic opened 1 year ago

mlodic commented 1 year ago

Name

ChatGPT

Link

https://openai.com/api/

Type of analyzer

generic, free text

Why should we use it

...why not?

Possible implementation

0x0elliot commented 1 year ago

this is so cool!!!

abheektripathy commented 1 year ago

would like to work on this next.

abheektripathy commented 1 year ago

@mlodic i explored this a bit, since there's no official api for ChatGPT till yet, i have found a unofficial wrapper, but i am unsure of its maintainability. Should i implement this using the wrapper or wait for the official api?

ps we can use GPT-3 Models as well for text completion until there's an official api for chatgpt.

mlodic commented 1 year ago

hey, thank you for your research. I would not use that wrapper because it does abuse the service. We can keep the issue open to wait for a future release of their APIs

tinaoberoi commented 1 year ago

Hi @abheektripathy are you still working on this? else I would like to take this up. :-)

abheektripathy commented 1 year ago

nope @tinaoberoi you can take it up, if you want.

mlodic commented 1 year ago

as I mentioned, if the APIs are not available, then we can consider this issue as blocked. If you want to contribute please choose another analyzer.

0x0elliot commented 1 year ago

APIs out. you can check it out here: https://platform.openai.com/docs/api-reference

g4ze commented 4 months ago

Any suggestions on implementation approach? It does open a wide range of use cases for us. @mlodic

mlodic commented 4 months ago

feel free to suggest, there's no limit.

I would allow the support for all types of observables. In case it is "generic", that would be the real request. On the contrary, in the other cases, I would create a sentence to wrap the information inside of it. Something like "tell what what you know about the domain . Is it a possible threat? Are there any possible security concerns?"

that's just an idea

g4ze commented 2 months ago

so the general idea is to wrap it around a specific prompt, i ran your prompts and it seems to be like this: https://chatgpt.com/share/311df8c4-d562-47bf-a804-dacc701f14d7 is this what we aim for or do we need to construct our prompt in a different way? Not to mention the current API isn't free, again. I can definitely work upon constructing an accurate prompt for all the observables in question and someone else with the developer api plan can implement them afterwards, what do you say?

mlodic commented 2 months ago

yet another analyzer which requires payment...right. I mean, nevermind. We can skip this. It would not probably make sense anyway in the context of an Analyzer.

g4ze commented 2 months ago

Would like me to replace this one with some other analyser?

mlodic commented 2 months ago

this one would be cool addition: https://github.com/intelowlproject/IntelOwl/issues/2444 to add in the "malware_tools_analyzer" too.