English
Related papers

Related papers: TINKER: A framework for Open source Cyberthreat In…

200 papers

In military organizations, Cyber Threat Intelligence (CTI) supports cyberspace operations by providing the commander with essential information about the adversary, their capabilities and objectives as they operate through cyberspace. This…

Cryptography and Security · Computer Science 2022-05-10 Oscar Sandoval Carlos

The construction of attack technique knowledge graphs aims to transform various types of attack knowledge into structured representations for more effective attack procedure modeling. Existing methods typically rely on textual data, such as…

Cryptography and Security · Computer Science 2024-11-14 Jian Wang , Tiantian Zhu , Chunlin Xiong , Yan Chen

Organizations are increasingly targeted by Advanced Persistent Threats (APTs), which involve complex, multi-stage tactics and diverse techniques. Cyber Threat Intelligence (CTI) sources, such as incident reports and security blogs, provide…

Cryptography and Security · Computer Science 2025-04-09 Sofia Della Penna , Roberto Natella , Vittorio Orbinato , Lorenzo Parracino , Luciano Pianese

Cybersecurity researchers have contributed to the automated extraction of CTI from textual sources, such as threat reports and online articles, where cyberattack strategies, procedures, and tools are described. The goal of this article is…

Cryptography and Security · Computer Science 2024-01-04 Md Rayhanur Rahman , Rezvan Mahdavi-Hezaveh , Laurie Williams

Despite the high volume of open-source Cyber Threat Intelligence (CTI), our understanding of long-term threat actor-victim dynamics remains fragmented due to inconsistent reporting standards and the lack of structured datasets containing…

Cryptography and Security · Computer Science 2026-05-22 Manuel Suarez-Roman , Francesco Marchiori , Mauro Conti , Juan Tapiador

Facing the dynamic complex cyber environments, internal and external cyber threat intelligence, and the increasing risk of cyber-attack, knowledge graphs show great application potential in the cyber security area because of their…

Cryptography and Security · Computer Science 2022-04-12 Kai Liu , Fei Wang , Zhaoyun Ding , Sheng Liang , Zhengfei Yu , Yun Zhou

Ability to effectively investigate indicators of compromise and associated network resources involved in cyber attacks is paramount not only to identify affected network resources but also to detect related malicious resources. Today, most…

Cyber Threat Intelligence (CTI) parsing aims to extract key threat information from massive data, transform it into actionable intelligence, enhance threat detection and defense efficiency, including attack graph construction, intelligence…

Cryptography and Security · Computer Science 2025-06-23 Yongheng Zhang , Xinyun Zhao , Yunshan Ma , Haokai Ma , Yingxiao Guan , Guozheng Yang , Yuliang Lu , Xiang Wang

Cyber threat hunting is the practice of proactively searching for latent threats in a network. Engaging in threat hunting can be difficult due to the volume of network traffic, variety of adversary techniques, and constantly evolving…

Cryptography and Security · Computer Science 2025-03-10 Matthew J. Turner , Mike Carenzo , Jackie Lasky , James Morris-King , James Ross

Cyber Threat Intelligence (CTI) summarization involves generating concise and accurate highlights from web intelligence data, which is critical for providing decision-makers with actionable insights to swiftly detect and respond to cyber…

Computation and Language · Computer Science 2025-07-01 Wei Peng , Junmei Ding , Wei Wang , Lei Cui , Wei Cai , Zhiyu Hao , Xiaochun Yun

Open source intelligence is a powerful tool for cybersecurity analysts to gather information both for analysis of discovered vulnerabilities and for detecting novel cybersecurity threats and exploits. However the scale of information that…

Cryptography and Security · Computer Science 2024-10-10 Elijah Pelofske , Lorie M. Liebrock , Vincent Urias

Attack knowledge graph construction seeks to convert textual cyber threat intelligence (CTI) reports into structured representations, portraying the evolutionary traces of cyber attacks. Even though previous research has proposed various…

Cryptography and Security · Computer Science 2024-05-09 Yongheng Zhang , Tingwen Du , Yunshan Ma , Xiang Wang , Yi Xie , Guozheng Yang , Yuliang Lu , Ee-Chien Chang

To address the increasing complexity and frequency of cybersecurity incidents emphasized by the recent cybersecurity threat reports with over 10 billion instances, cyber threat intelligence (CTI) plays a critical role in the modern…

Cryptography and Security · Computer Science 2024-06-04 Hangyuan Ji , Jian Yang , Linzheng Chai , Chaoren Wei , Liqun Yang , Yunlong Duan , Yunli Wang , Tianzhen Sun , Hongcheng Guo , Tongliang Li , Changyu Ren , Zhoujun Li

This paper introduces DISINFOX, an open-source threat intelligence exchange platform for the structured collection, management, and dissemination of disinformation incidents and influence operations. Analysts can upload and correlate…

Cryptography and Security · Computer Science 2025-04-03 Felipe Sánchez González , Javier Pastor-Galindo , José A. Ruipérez-Valiente

Cyber Threat Intelligence (CTI) has emerged as a vital complementary approach that operates in the early phases of the cyber threat lifecycle. CTI involves collecting, processing, and analyzing threat data to provide a more accurate and…

Cryptography and Security · Computer Science 2026-05-25 Samaneh Shafee , Alysson Bessani , Pedro M. Ferreira

Over the last years, threat intelligence sharing has steadily grown, leading cybersecurity professionals to access increasingly larger amounts of heterogeneous data. Among those, cyber attacks' Tactics, Techniques and Procedures (TTPs) have…

Cryptography and Security · Computer Science 2020-04-30 Valentine Legoy , Marco Caselli , Christin Seifert , Andreas Peter

Threat information sharing is considered as one of the proactive defensive approaches for enhancing the overall security of trusted partners. Trusted partner organizations can provide access to past and current cybersecurity threats for…

Cryptography and Security · Computer Science 2021-12-21 Hisham Ali , Pavlos Papadopoulos , Jawad Ahmad , Nikolaos Pitropakis , Zakwan Jaroucheh , William J. Buchanan

In the dynamic cyber threat landscape, effective decision-making under uncertainty is crucial for maintaining robust information security. This paper introduces the Cyber Resilience Index (CRI), a threat-informed probabilistic approach to…

Cryptography and Security · Computer Science 2024-09-09 Lampis Alevizos , Vinh-Thong Ta

Cyber Threat Intelligence (CTI) reporting is pivotal in contemporary risk management strategies. As the volume of CTI reports continues to surge, the demand for automated tools to streamline report generation becomes increasingly apparent.…

Cryptography and Security · Computer Science 2023-10-05 Filippo Perrina , Francesco Marchiori , Mauro Conti , Nino Vincenzo Verde

As the practicality of Artificial Intelligence (AI) and Machine Learning (ML) based techniques grow, there is an ever increasing threat of adversarial attacks. There is a need to red team this ecosystem to identify system vulnerabilities,…

Cryptography and Security · Computer Science 2022-08-17 Chuyen Nguyen , Caleb Morgan , Sudip Mittal