AI-Powered Security Assistant

This lab introduces an AI-powered security assistant built specifically to showcase the art of the possible when applying AI to cybersecurity. This experience is designed to demonstrate how AI can be leveraged to transform security operations by automating security threat analysis by combining email IoC extraction with real-time CrowdStrike device intelligence and AI-powered insights.

This application demonstrates how AI can be used to automate and accelerate real-world security investigations by analyzing a sample suspicious email and correlating its contents against a live CrowdStrike environment. Rather than working with static or simulated data, this lab uses a real CrowdStrike instance to showcase how AI-driven workflows can operate against actual endpoint inventory and detection telemetry.

By completing this lab, you will:

• Experience the art of the possible for AI in cybersecurity through an AI-powered security assistant.
• See how AI can automate and accelerate investigations by extracting indicators and correlating them against a live CrowdStrike environment.
• Understand how AI converts raw security data into intelligence with threat analysis and response recommendations.
• Evaluate how AI can act as a security copilot to improve speed and decision-making in SOC workflows.

Windows 11 Jumphost

Llama 3.3-70B

Streamlit