While many vendors are pushing generative AI tool sets into their solutions, the use cases so far often end at simple generalizations and summary outputs. "Taking ChatGPT Hunting" focuses on how LLAMA and ChatGPT style solutions can enhance threat hunting efforts based on real world testing with multiple security technology stacks. Participants will learn how generative AI tools can be leveraged to assist in detection engineering workflows with SIGMA and YARA rule creation, as well as the current capabilities and limitations in common threat hunting use cases. This talk will briefly cover multiple parts including...

-An overview of generative AI tools with a focus on LLAMA style solutions for local deployment.
-Enhancing threat hunting operations including how generative AI can assist in different threat scenarios and detection rule creation.
-Creating YARA rules with generative AI.
-Creating SIGMA rules with generative AI.
-The current boundaries of generative AI capabilities in and common pitfalls found when attempting to use these tools for SIGMA rules, YARA rules, and threat hunting.

The session will allow open questions throughout to ensure attendees are able to get the information they need to make informed decisions about the potential usages for their operations. Attendees will take away a general understanding of the use cases for generative AI in detection engineering and threat hunting, and will hopefully empower analysts to safely adopt these technologies into their threat hunting workflows.

BSides Tampa 2025