Example Prompts
- “What’s the security community saying about CVE-2026-1234?”
- “OSINT: find breach reports about Company X”
- “Monitor Twitter for zero-day exploit discussions this week”
- “What are the emerging security threats being discussed on Reddit?”
- “Track threat actor mentions for APT29 on social media”
Capabilities
- CVE Tracking: Search for specific CVE IDs across social platforms to gauge community response, severity perception, and exploitation status.
- Breach Monitoring: Detect and aggregate reports of data breaches, leaked credentials, and security incidents as they surface on social media.
- Exploit Chatter: Identify discussions about proof-of-concept exploits, attack techniques, and vulnerability details.
- Timeline Reconstruction: Build chronological timelines of security events from the earliest social mentions to current status.
- Severity Assessment: Gauge real-world severity based on social signals — discussion volume, expert engagement, and community urgency.
- Source Credibility: Evaluate the credibility of threat intelligence sources based on their posting history and community standing.
How It Works
Build security queries
Constructs targeted queries using CVE IDs, vulnerability terms, breach terminology, and threat actor names.
Search security communities
Queries Twitter and Reddit, focusing on security-focused communities and researchers.
Xpoz Tools Used
| Tool | Purpose |
|---|---|
getTwitterPostsByKeywords | Search Twitter for security-related posts |
getTwitterUsersByKeywords | Identify security researchers and threat intel sources |
getRedditPostsByKeywords | Search Reddit security communities (r/netsec, r/cybersecurity, etc.) |