The extracted text is analysed using Elemendar’s proprietary, machine learning-powered Natural Language Processing engine. READ. extracts and categorises entities from the unstructured CTI using the STIX standard. Currently supported STIX entities include Identities, Indicators, Malware, Threat Actors, Tools and Vulnerabilities. These are further grouped into relevant subcategories, for example, ‘Trojan’ for Malware. Sentences are also processed, extracted and matched against the MITRE ATT&CK framework to provide relevant attack patterns. Finally, relationships between these objects are visibly outlined for the Analyst to identify.