Summary

Talkback is a project developed by elttam to help our team and the wider community be more efficient and effective at keeping up with cyber security content.

The system works by continuously monitoring several resource mediums for infosec news and publications from all corners of the internet, then uses AI/ML and third-party integrations to hydrate, classify, summarise and organise all content. The Talkback dataset is available via the UI and also an API.

A couple of the key interfaces in Talkback are:

For more information on how Talkback works and its key features, see our blog post Keeping up with the Pwnses - an overview of Talkback.

Key Features

Curators List

A key feature of Talkback is highlighting resources that have been featured by a handful of infosec curators. This list of curators has been specially chosen due to their quality and experience, and we recommend following and supporting them.

The curators list is as follows:

FAQ

We built Talkback to help improve productivity for technical infosec enthusiasts/practitioners. We wanted it to be a fully automated living infosec library that can support many use-cases.

Search works by indexing resource content in Elasticsearch, including PDFs and other document types. The resource <title> and <description> meta tags are also indexed. Advanced search queries can be done using the query string syntax.

The resource ranking works by factoring in several attributes associated with a resource. This includes if a resource has been featured by a curator, the popularity of cross-referenced resources, and also its popularity on social media and news sites.

A few new features in our backlog include:
  • Breakdowns by CWE, CPE or TTPs
  • Improvements for content parsing

Yes, there is a GraphQL API available. Start here.

Not at the moment. We may consider open sourcing the system or at least specific components in the future.

The resource parser is in its infancy with some known limitations that we will incrementally improve.

Talkback is a rewrite of a tool from 2010-2012 by @volvent. The original version focused on leveraging social media to identify research and trends of vulnerabilities and also included a prototype for browsing trending infosec resources - a presentation on this can be found here. This is a new version by @lanjelot and @volvent with a revamped design to focus on technical resources and news.

Please email talkback at elttam.com with the details.