English
Related papers

Related papers: Context-aware Entity-Relation Extraction for Threa…

200 papers

Textual descriptions in cyber threat intelligence (CTI) reports, such as security articles and news, are rich sources of knowledge about cyber threats, crucial for organizations to stay informed about the rapidly evolving threat landscape.…

Cryptography and Security · Computer Science 2025-04-22 Yutong Cheng , Osama Bajaber , Saimon Amanuel Tsegai , Dawn Song , Peng Gao

Cyber attacks are becoming more sophisticated and diverse, making detection increasingly challenging. To combat these attacks, security practitioners actively summarize and exchange their knowledge about attacks across organizations in the…

Cryptography and Security · Computer Science 2022-05-31 Zhenyuan Li , Jun Zeng , Yan Chen , Zhenkai Liang

The construction of attack technique knowledge graphs aims to transform various types of attack knowledge into structured representations for more effective attack procedure modeling. Existing methods typically rely on textual data, such as…

Cryptography and Security · Computer Science 2024-11-14 Jian Wang , Tiantian Zhu , Chunlin Xiong , Yan Chen

Cyber Threat Intelligence (CTI) is information describing threat vectors, vulnerabilities, and attacks and is often used as training data for AI-based cyber defense systems such as Cybersecurity Knowledge Graphs (CKG). There is a strong…

Computation and Language · Computer Science 2022-08-04 Casey Hanks , Michael Maiden , Priyanka Ranade , Tim Finin , Anupam Joshi

Cyber threat intelligence (CTI) is a crucial tool to prevent sophisticated, organized, and weaponized cyber attacks. However, few studies have focused on the credibility assessment of CTI, and this work still requires manual analysis by…

Cryptography and Security · Computer Science 2025-07-28 Zongzong Wu , Fengxiao Tang , Ming Zhao , Yufeng Li

The rapid evolution of cyber threats has highlighted significant gaps in security knowledge integration. Cybersecurity Knowledge Graphs (CKGs) relying on structured data inherently exhibit hysteresis, as the timely incorporation of rapidly…

Cryptography and Security · Computer Science 2026-02-13 Zijing Xu , Ziwei Ning , Tiancheng Hu , Jianwei Zhuge , Yangyang Wang , Jiahao Cao , Mingwei Xu

Threat intelligence on malware attacks and campaigns is increasingly being shared with other security experts for a cost or for free. Other security analysts use this intelligence to inform them of indicators of compromise, attack…

Cryptography and Security · Computer Science 2023-01-20 Nidhi Rastogi , Sharmishtha Dutta , Mohammed J. Zaki , Alex Gittens , Charu Aggarwal

Cyber threat intelligence (CTI) analysts must answer complex questions over large collections of narrative security reports. Retrieval-augmented generation (RAG) systems help language models access external knowledge, but traditional vector…

Artificial Intelligence · Computer Science 2026-04-14 Dzenan Hamzic , Florian Skopik , Max Landauer , Markus Wurzenberger , Andreas Rauber

Cyber Threat Intelligence (CTI) parsing aims to extract key threat information from massive data, transform it into actionable intelligence, enhance threat detection and defense efficiency, including attack graph construction, intelligence…

Cryptography and Security · Computer Science 2025-06-23 Yongheng Zhang , Xinyun Zhao , Yunshan Ma , Haokai Ma , Yingxiao Guan , Guozheng Yang , Yuliang Lu , Xiang Wang

Attack knowledge graph construction seeks to convert textual cyber threat intelligence (CTI) reports into structured representations, portraying the evolutionary traces of cyber attacks. Even though previous research has proposed various…

Cryptography and Security · Computer Science 2024-05-09 Yongheng Zhang , Tingwen Du , Yunshan Ma , Xiang Wang , Yi Xie , Guozheng Yang , Yuliang Lu , Ee-Chien Chang

Cyber threats are constantly evolving. Extracting actionable insights from unstructured Cyber Threat Intelligence (CTI) data is essential to guide cybersecurity decisions. Increasingly, organizations like Microsoft, Trend Micro, and…

Cryptography and Security · Computer Science 2024-07-04 Romy Fieblinger , Md Tanvirul Alam , Nidhi Rastogi

The automatic extraction of information from Cyber Threat Intelligence (CTI) reports is crucial in risk management. The increased frequency of the publications of these reports has led researchers to develop new systems for automatically…

Information Retrieval · Computer Science 2023-09-11 Francesco Marchiori , Mauro Conti , Nino Vincenzo Verde

To remain aware of the fast-evolving cyber threat landscape, open-source Cyber Threat Intelligence (OSCTI) has received growing attention from the community. Commonly, knowledge about threats is presented in a vast number of OSCTI reports.…

Cryptography and Security · Computer Science 2021-03-02 Peng Gao , Xiaoyuan Liu , Edward Choi , Bhavna Soman , Chinmaya Mishra , Kate Farris , Dawn Song

With the rise of knowledge graph based retrieval-augmented generation (RAG) techniques such as GraphRAG and Pike-RAG, the role of knowledge graphs in enhancing the reasoning capabilities of large language models (LLMs) has become…

Information Retrieval · Computer Science 2025-04-15 Hairong Zhang , Jiaheng Si , Guohang Yan , Boyuan Qi , Pinlong Cai , Song Mao , Ding Wang , Botian Shi

This work evaluates the performance of Cyber Threat Intelligence (CTI) extraction methods in identifying attack techniques from threat reports available on the web using the MITRE ATT&CK framework. We analyse four configurations utilising…

Cryptography and Security · Computer Science 2025-05-07 Hoang Cuong Nguyen , Shahroz Tariq , Mohan Baruwal Chhetri , Bao Quoc Vo

Knowledge Graphs (KGs) are foundational structures in many AI applications, representing entities and their interrelations through triples. However, triple-based KGs lack the contextual information of relational knowledge, like temporal…

Artificial Intelligence · Computer Science 2024-07-01 Chengjin Xu , Muzhi Li , Cehao Yang , Xuhui Jiang , Lumingyuan Tang , Yiyan Qi , Jian Guo

Sharing methods of attack and their effectiveness is a cornerstone of building robust defensive systems. Threat analysis reports, produced by various individuals and organizations, play a critical role in supporting security operations and…

Cryptography and Security · Computer Science 2025-07-23 Ahmed Lekssays , Husrev Taha Sencar , Ting Yu

Cyber Threat Intelligence (CTI) reports are factual records compiled by security analysts through their observations of threat events or their own practical experience with attacks. In order to utilize CTI reports for attack detection,…

Cryptography and Security · Computer Science 2024-10-16 Wenrui Cheng , Tiantian Zhu , Tieming Chen , Qixuan Yuan , Jie Ying , Hongmei Li , Chunlin Xiong , Mingda Li , Mingqi Lv , Yan Chen

The extraction of entities and relationships from threat intelligence reports into structured formats, such as cybersecurity knowledge graphs, is essential for automated threat analysis, detection, and mitigation. However, existing joint…

Machine Learning · Computer Science 2026-05-05 Inoussa Mouiche , Sherif Saad

Effective incident response (IR) is critical for mitigating cyber threats, yet security teams are overwhelmed by alert fatigue, high false-positive rates, and the vast volume of unstructured Cyber Threat Intelligence (CTI) documents. While…

Cryptography and Security · Computer Science 2025-08-15 Amine Tellache , Abdelaziz Amara Korba , Amdjed Mokhtari , Horea Moldovan , Yacine Ghamri-Doudane
‹ Prev 1 2 3 10 Next ›