English
Related papers

Related papers: Context-Aware Web Attack Detection in Open-Source …

200 papers

Cyberattacks have grown into a major risk for organizations, with common consequences being data theft, sabotage, and extortion. Since preventive measures do not suffice to repel attacks, timely detection of successful intruders is crucial…

Cryptography and Security · Computer Science 2023-12-21 Rafael Uetz , Marco Herzog , Louis Hackländer , Simon Schwarz , Martin Henze

The escalating sophistication and volume of cyber threats in cloud environments necessitate a paradigm shift in strategies. Recognising the need for an automated and precise response to cyber threats, this research explores the application…

Cryptography and Security · Computer Science 2026-02-11 Mohammed Ashfaaq M. Farzaan , Mohamed Chahine Ghanem , Ayman El-Hajjar , Deepthi N. Ratnayake

Web applications increasingly face evasive and polymorphic attack payloads, yet traditional web application firewalls (WAFs) based on static rule sets such as the OWASP Core Rule Set (CRS) often miss obfuscated or zero-day patterns without…

Cryptography and Security · Computer Science 2026-01-15 Heba Osama , Omar Elebiary , Youssef Qassim , Mohamed Amgad , Ahmed Maghawry , Ahmed Saafan , Haitham Ghalwash

The growing frequency of cyberattacks has heightened the demand for accurate and efficient threat detection systems. SIEM platforms are important for analyzing log data and detecting adversarial activities through rule-based queries, also…

Cryptography and Security · Computer Science 2025-02-05 Prasanna N. Wudali , Moshe Kravchik , Ehud Malul , Parth A. Gandhi , Yuval Elovici , Asaf Shabtai

We present a hybrid framework for adaptive insider-threat detection that tightly integrates multi-agent simulation (MAS), layered Security Information and Event Management (SIEM) correlation, behavioral and communication forensics,…

Cryptography and Security · Computer Science 2026-01-09 Firdous Kausar , Asmah Muallem , Naw Safrin Sattar , Mohamed Zakaria Kurdi

Modern Security Operations Centres (SOCs) integrate diverse tools, such as SIEM, IDS, and XDR systems, offering rich contextual data, including alert enrichments, flow features, and similar case histories. Yet, analysts must still manually…

Cryptography and Security · Computer Science 2025-06-12 Ronal Singh , Mohan Baruwal Chhetri , Surya Nepal , Cecile Paris

Security Operations Centers (SOCs) face mounting operational challenges. These challenges come from increasing threat volumes, heterogeneous SIEM platforms, and time-consuming manual triage workflows. We present an end-to-end threat…

Cryptography and Security · Computer Science 2026-05-01 Md Hasan Saju , Akramul Azim

Traditional security scanners fail when facing new attack patterns they haven't seen before. They rely on fixed rules and predetermined signatures, making them blind to novel threats. We present a fundamentally different approach: instead…

Cryptography and Security · Computer Science 2025-11-21 Ayush Chaudhary

The cybersecurity of Industrial Control Systems that manage critical infrastructure such as Water Distribution Systems has become increasingly important as digital connectivity expands. BATADAL benchmark data is a good source of testing…

Cryptography and Security · Computer Science 2025-12-17 Waqas Ahmed

SIEM systems serve as a critical hub, employing rule-based logic to detect and respond to threats. Redundant or overlapping rules in SIEM systems lead to excessive false alerts, degrading analyst performance due to alert fatigue, and…

Cryptography and Security · Computer Science 2025-05-13 Akansha Shukla , Parth Atulbhai Gandhi , Yuval Elovici , Asaf Shabtai

While AI-coding assistants accelerate software development, current testing frameworks struggle to keep pace with the resulting volume of AI-generated code. Traditional fuzzing techniques often allocate resources uniformly and lack semantic…

Software Engineering · Computer Science 2026-02-13 Ziyi Yang , Kalit Inani , Keshav Kabra , Vima Gupta , Anand Padmanabha Iyer

End-point monitoring solutions are widely deployed in today's enterprise environments to support advanced attack detection and investigation. These monitors continuously record system-level activities as audit logs and provide deep…

Cryptography and Security · Computer Science 2026-02-16 Hao Zhang , Shuo Shao , Song Li , Zhenyu Zhong , Yan Liu , Zhan Qin

Security issues in shipped code can lead to unforeseen device malfunction, system crashes or malicious exploitation by crackers, post-deployment. These vulnerabilities incur a cost of repair and foremost risk the credibility of the company.…

Artificial Intelligence · Computer Science 2021-04-20 Anshul Tanwar , Hariharan Manikandan , Krishna Sundaresan , Prasanna Ganesan , Sathish Kumar Chandrasekaran , Sriram Ravi

This work evaluates the performance of Cyber Threat Intelligence (CTI) extraction methods in identifying attack techniques from threat reports available on the web using the MITRE ATT&CK framework. We analyse four configurations utilising…

Cryptography and Security · Computer Science 2025-05-07 Hoang Cuong Nguyen , Shahroz Tariq , Mohan Baruwal Chhetri , Bao Quoc Vo

Investigating cybersecurity incidents requires collecting and analyzing evidence from multiple log sources, including intrusion detection alerts, network traffic records, and authentication events. This process is labor-intensive: analysts…

Cryptography and Security · Computer Science 2026-05-05 Xavier Cadet , Aditya Vikram Singh , Harsh Mamania , Edward Koh , Alex Fitts , Dirk Van Bruggen , Simona Boboila , Peter Chin , Alina Oprea

Cybersecurity is a domain where there is constant change in patterns of attack, and we need ways to make our Cybersecurity systems more adaptive to handle new attacks and categorize for appropriate action. We present a novel approach to…

Cryptography and Security · Computer Science 2021-06-29 Dattaraj Rao , Shraddha Mane

The escalating frequency of cyber-attacks poses significant challenges for organisations, particularly small enterprises constrained by limited in-house expertise, insufficient knowledge, and financial resources. This research presents a…

Cryptography and Security · Computer Science 2026-03-16 Emad Sherif , Iryna Yevseyeva , Vitor Basto-Fernandes , Allan Cook

Modern Security Operations Centers struggle with alert fatigue, fragmented tooling, and limited cross-source event correlation. Challenges that current Security Information Event Management and Extended Detection and Response systems only…

Cryptography and Security · Computer Science 2026-04-08 Anes Abdennebi , Nadjia Kara , Laaziz Lahlou , Hakima Ould-Slimane

To assure cyber security of an enterprise, typically SIEM (Security Information and Event Management) system is in place to normalize security event from different preventive technologies and flag alerts. Analysts in the security operation…

Cryptography and Security · Computer Science 2018-01-03 Wangyan Feng , Shuning Wu , Xiaodan Li , Kevin Kunkle

Large Language Models (LLMs) are increasingly used in agentic systems, where their interactions with diverse tools and environments create complex, multi-stage safety challenges. However, existing benchmarks mostly rely on static,…

Cryptography and Security · Computer Science 2026-02-03 Liming Lu , Xiang Gu , Junyu Huang , Jiawei Du , Xu Zheng , Yunhuai Liu , Yongbin Zhou , Shuchao Pang
‹ Prev 1 2 3 10 Next ›