Beyond the Sandbox: AI-Powered Threat Hunting with Assemblyline

📅 Date: October 13, 2025 (Monday)
⏰ Time: 7:30 PM
📍 Location: DEV.BG Cyber Security User Group Event
✨ Registration: https://d.dev.bg/2p9aecwh

ℹ️ About the Event:
In the fast-evolving cybersecurity landscape, traditional malware analysis methods are hitting their limits.
This talk explores how AI-powered analysis and Assemblyline are redefining modern threat hunting — from sample ingestion to actionable intelligence.

You’ll learn about:

• The “beyond the sandbox” concept – limitations of static and dynamic analysis

• Assemblyline architecture – services, flows, and artifact management

• SOC challenges in malware analysis: noise, prioritization, scalability, safety

• AI modules for summaries, IoC extraction, and campaign clustering

• Integrations with MISP, Wazuh (SIEM), TheHive/Cortex, and hunting playbooks

• Live demo: from ingest → analysis → AI report → correlation → hunt/response

• Practical takeaways: automation, governance, and analytical environment security

🎟️ Speaker:
Lyubomir Georgiev, Cybersecurity Engineer @ CyberXperts
Lyubomir specializes in infrastructure security, threat hunting, and vulnerability management. With a BSc in ICT – Infrastructure and Cybersecurity (Cum Laude) from Fontys University of Applied Sciences, he combines cloud engineering, security research, and automation to deliver cutting-edge cybersecurity solutions.

🏢 Supported by:
myPOS – one of Europe’s fastest-growing fintech companies.
EBRD – The European Bank for Reconstruction and Development, expanding its tech operations in Sofia.

👥 Perfect for:

• Cybersecurity engineers and SOC analysts

• AI enthusiasts in threat detection

• Professionals interested in security automation and AI integration

✨ Organizer: DEV.BG Cyber Security Community
✨ Explore Cyber Security job listings