Zenebe et al., 2019 - Google Patents
Cyber threat discovery from dark webZenebe et al., 2019
View PDF- Document ID
- 872754672787829134
- Author
- Zenebe A
- Shumba M
- Carillo A
- Cuenca S
- Publication year
- Publication venue
- EPiC Series in Computing
External Links
Snippet
In the darknet, hackers are constantly sharing information with each other and learning from each other. These conversations in online forums for example can contain data that may help assist in the discovery of cyber threat intelligence. Cyber Threat Intelligence (CTI) is …
- 238000010801 machine learning 0 abstract description 24
Classifications
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING; COUNTING
- G06F—ELECTRICAL DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/50—Monitoring users, programs or devices to maintain the integrity of platforms, e.g. of processors, firmware or operating systems
- G06F21/55—Detecting local intrusion or implementing counter-measures
- G06F21/554—Detecting local intrusion or implementing counter-measures involving event detection and direct action
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING; COUNTING
- G06F—ELECTRICAL DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/50—Monitoring users, programs or devices to maintain the integrity of platforms, e.g. of processors, firmware or operating systems
- G06F21/55—Detecting local intrusion or implementing counter-measures
- G06F21/552—Detecting local intrusion or implementing counter-measures involving long-term monitoring or reporting
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING; COUNTING
- G06F—ELECTRICAL DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/30—Authentication, i.e. establishing the identity or authorisation of security principals
- G06F21/31—User authentication
- G06F21/316—User authentication by observing the pattern of computer usage, e.g. typical user behaviour
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING; COUNTING
- G06F—ELECTRICAL DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/70—Protecting specific internal or peripheral components, in which the protection of a component leads to protection of the entire computer
- G06F21/82—Protecting input, output or interconnection devices
- G06F21/83—Protecting input, output or interconnection devices input devices, e.g. keyboards, mice or controllers thereof
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/14—Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic
- H04L63/1408—Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic by monitoring network traffic
- H04L63/1425—Traffic logging, e.g. anomaly detection
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING; COUNTING
- G06F—ELECTRICAL DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/60—Protecting data
- G06F21/62—Protecting access to data via a platform, e.g. using keys or access control rules
- G06F21/6218—Protecting access to data via a platform, e.g. using keys or access control rules to a system of files or objects, e.g. local or distributed file system or database
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING; COUNTING
- G06F—ELECTRICAL DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/50—Monitoring users, programs or devices to maintain the integrity of platforms, e.g. of processors, firmware or operating systems
- G06F21/57—Certifying or maintaining trusted computer platforms, e.g. secure boots or power-downs, version controls, system software checks, secure updates or assessing vulnerabilities
- G06F21/577—Assessing vulnerabilities and evaluating computer system security
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/14—Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic
- H04L63/1408—Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic by monitoring network traffic
- H04L63/1416—Event detection, e.g. attack signature detection
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING; COUNTING
- G06F—ELECTRICAL DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/30—Authentication, i.e. establishing the identity or authorisation of security principals
- G06F21/45—Structures or tools for the administration of authentication
- G06F21/46—Structures or tools for the administration of authentication by designing passwords or checking the strength of passwords
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/14—Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic
- H04L63/1433—Vulnerability analysis
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING; COUNTING
- G06N—COMPUTER SYSTEMS BASED ON SPECIFIC COMPUTATIONAL MODELS
- G06N5/00—Computer systems utilising knowledge based models
- G06N5/02—Knowledge representation
- G06N5/022—Knowledge engineering, knowledge acquisition
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| Tian et al. | A distributed deep learning system for web attack detection on edge devices | |
| Zenebe et al. | Cyber threat discovery from dark web | |
| Zhao et al. | Cyber threat intelligence modeling based on heterogeneous graph convolutional network | |
| Deliu et al. | Extracting cyber threat intelligence from hacker forums: Support vector machines versus convolutional neural networks | |
| US20240241752A1 (en) | Risk profiling and rating of extended relationships using ontological databases | |
| Sahani et al. | Classification of intrusion detection using data mining techniques | |
| Jiang et al. | A deep learning based online malicious URL and DNS detection scheme | |
| Desai et al. | Malicious web content detection using machine leaning | |
| Abdeen et al. | Smet: Semantic mapping of cve to att&ck and its application to cybersecurity | |
| Hamed et al. | A survey and taxonomy on data and pre-processing techniques of intrusion detection systems | |
| Djaballah et al. | A new approach for the detection and analysis of phishing in social networks: the case of Twitter | |
| Gong et al. | Model uncertainty based annotation error fixing for web attack detection | |
| Liu et al. | Context2Vector: Accelerating security event triage via context representation learning | |
| Laughter et al. | Detection of malicious http requests using header and url features | |
| Basnet et al. | Learning to Detect Phishing Webpages. | |
| Li et al. | A state-of-the-art review on phishing website detection techniques | |
| Aleroud et al. | Context and semantics for detection of cyber attacks | |
| Kulkarni et al. | Phishing webpage detection: Unveiling the threat landscape and investigating detection techniques | |
| Igwilo et al. | Comparative analysis of ensemble learning and non-ensemble machine learning algorithms for phishing URL detection | |
| Bolatbek et al. | A framework for detection and mitigation of cyber criminal activities using university networks in Kazakhstan | |
| Tubyte et al. | Research on phishing email detection based on URL parameters using machine learning algorithms | |
| Ogidan et al. | Machine learning for cyber security frameworks: a review | |
| Amadou et al. | HC-HackerRank: Identifying Key Hackers in Cybercrime Social Network Forums | |
| Samtani | Developing proactive cyber threat intelligence from the online hacker community: A computational design science approach | |
| Ji et al. | Feature driven learning framework for cybersecurity event detection |