English
Related papers

Related papers: Looking Beyond IoCs: Automatically Extracting Atta…

200 papers

This work evaluates the performance of Cyber Threat Intelligence (CTI) extraction methods in identifying attack techniques from threat reports available on the web using the MITRE ATT&CK framework. We analyse four configurations utilising…

Cryptography and Security · Computer Science 2025-05-07 Hoang Cuong Nguyen , Shahroz Tariq , Mohan Baruwal Chhetri , Bao Quoc Vo

Threat intelligence on malware attacks and campaigns is increasingly being shared with other security experts for a cost or for free. Other security analysts use this intelligence to inform them of indicators of compromise, attack…

Cryptography and Security · Computer Science 2023-01-20 Nidhi Rastogi , Sharmishtha Dutta , Mohammed J. Zaki , Alex Gittens , Charu Aggarwal

The knowledge on attacks contained in Cyber Threat Intelligence (CTI) reports is very important to effectively identify and quickly respond to cyber threats. However, this knowledge is often embedded in large amounts of text, and therefore…

Cryptography and Security · Computer Science 2021-04-20 Kiavash Satvat , Rigel Gjomemo , V. N. Venkatakrishnan

Cyber Threat Intelligence (CTI) is information describing threat vectors, vulnerabilities, and attacks and is often used as training data for AI-based cyber defense systems such as Cybersecurity Knowledge Graphs (CKG). There is a strong…

Computation and Language · Computer Science 2022-08-04 Casey Hanks , Michael Maiden , Priyanka Ranade , Tim Finin , Anupam Joshi

Cyber Threat Intelligence (CTI) has emerged as a vital complementary approach that operates in the early phases of the cyber threat lifecycle. CTI involves collecting, processing, and analyzing threat data to provide a more accurate and…

Cryptography and Security · Computer Science 2026-05-25 Samaneh Shafee , Alysson Bessani , Pedro M. Ferreira

Organizations are increasingly targeted by Advanced Persistent Threats (APTs), which involve complex, multi-stage tactics and diverse techniques. Cyber Threat Intelligence (CTI) sources, such as incident reports and security blogs, provide…

Cryptography and Security · Computer Science 2025-04-09 Sofia Della Penna , Roberto Natella , Vittorio Orbinato , Lorenzo Parracino , Luciano Pianese

Due to the variety of cyber-attacks or threats, the cybersecurity community enhances the traditional security control mechanisms to an advanced level so that automated tools can encounter potential security threats. Very recently, Cyber…

Machine Learning · Computer Science 2022-11-15 Md Imran Hossen , Ashraful Islam , Farzana Anowar , Eshtiak Ahmed , Mohammad Masudur Rahman , Xiali , Hei

Effective Cyber Threat Intelligence (CTI) relies upon accurately structured and semantically enriched information extracted from cybersecurity system logs. However, current methodologies often struggle to identify and interpret malicious…

Cryptography and Security · Computer Science 2026-04-28 Luca Cotti , Anisa Rula , Devis Bianchini , Federico Cerutti

Cybersecurity researchers have contributed to the automated extraction of CTI from textual sources, such as threat reports and online articles, where cyberattack strategies, procedures, and tools are described. The goal of this article is…

Cryptography and Security · Computer Science 2024-01-04 Md Rayhanur Rahman , Rezvan Mahdavi-Hezaveh , Laurie Williams

The extraction of cyber threat intelligence (CTI) from open sources is a rapidly expanding defensive strategy that enhances the resilience of both Information Technology (IT) and Operational Technology (OT) environments against large-scale…

Cryptography and Security · Computer Science 2024-02-16 Prasasthy Balasubramanian , Sadaf Nazari , Danial Khosh Kholgh , Alireza Mahmoodi , Justin Seby , Panos Kostakos

A wide variety of Cyber Threat Information (CTI) is used by Security Operation Centres (SOCs) to perform validation of security incidents and alerts. Security experts manually define different types of rules and scripts based on CTI to…

Cryptography and Security · Computer Science 2022-03-16 Chadni Islam , M. Ali Babar , Roland Croft , Helge Janicke

Understanding the attack patterns associated with a cyberattack is crucial for comprehending the attacker's behaviors and implementing the right mitigation measures. However, majority of the information regarding new attacks is typically…

Machine Learning · Computer Science 2024-12-02 Weiqiu You , Youngja Park

Cyber Threat Intelligence (CTI) is critical for mitigating threats to organizations, governments, and institutions, yet the necessary data are often dispersed across diverse formats. AI-driven solutions for CTI Information Extraction (IE)…

Cryptography and Security · Computer Science 2025-01-14 Olga Sorokoletova , Emanuele Antonioni , Giordano Colò

The objectives of cyberattacks are becoming sophisticated, and attackers are concealing their identity by masquerading as other attackers. Cyber threat intelligence (CTI) is gaining attention as a way to collect meaningful knowledge to…

Cryptography and Security · Computer Science 2019-10-08 Daegeon Kim , Huy Kang Kim

Threat hunting is a proactive methodology for exploring, detecting and mitigating cyberattacks within complex environments. As opposed to conventional detection systems, threat hunting strategies assume adversaries have infiltrated the…

Cryptography and Security · Computer Science 2023-10-09 Ángel Casanova Bienzobas , Alfonso Sánchez-Macián

In today's digital age, our dependence on IoT (Internet of Things) and IIoT (Industrial IoT) systems has grown immensely, which facilitates sensitive activities such as banking transactions and personal, enterprise data, and legal document…

Cryptography and Security · Computer Science 2024-03-21 Md. Ashraf Uddin , Sunil Aryal , Mohamed Reda Bouadjenek , Muna Al-Hawawreh , Md. Alamin Talukder

Network analysis and machine learning techniques have been widely applied for building malware detection systems. Though these systems attain impressive results, they often are $(i)$ not extensible, being monolithic, well tuned for the…

Cryptography and Security · Computer Science 2023-04-14 Yashovardhan Sharma , Simon Birnbach , Ivan Martinovic

Effective incident response (IR) is critical for mitigating cyber threats, yet security teams are overwhelmed by alert fatigue, high false-positive rates, and the vast volume of unstructured Cyber Threat Intelligence (CTI) documents. While…

Cryptography and Security · Computer Science 2025-08-15 Amine Tellache , Abdelaziz Amara Korba , Amdjed Mokhtari , Horea Moldovan , Yacine Ghamri-Doudane

Open Cyber threat intelligence (OpenCTI) information is available in an unstructured format from heterogeneous sources on the Internet. We present CyNER, an open-source python library for cybersecurity named entity recognition (NER). CyNER…

Cryptography and Security · Computer Science 2022-04-13 Md Tanvirul Alam , Dipkamal Bhusal , Youngja Park , Nidhi Rastogi

Cyber Threat Intelligence (CTI) enables organizations to anticipate, detect, and mitigate evolving cyber threats. Its effectiveness depends on high-quality datasets, which support model development, training, evaluation, and benchmarking.…

Cryptography and Security · Computer Science 2025-09-26 Dincy R. Arikkat , Sneha B. T. , Serena Nicolazzo , Antonino Nocera , Vinod P. , Rafidha Rehiman K. A. , Karthika R
‹ Prev 1 2 3 10 Next ›