Threat Miner - A Text Analysis Engine for Threat Identification Using Dark Web Data

Nathan, Deguara and Anum, Paracha and Junaid, Arshad and Muhammad Ajmal, Azad (2022) Threat Miner - A Text Analysis Engine for Threat Identification Using Dark Web Data. 2022 IEEE International Conference on Big Data. (In Press)

[img] Text
Threat_Miner_CR.pdf - Accepted Version
Restricted to Repository staff only

Download (528kB) | Request a copy


Cyber threats continue to grow with novel methods to attack computing systems, highlighting the need for sophisticated mechanisms and techniques to protect against such dynamic threats. Contemporary cyber defence mechanisms utilise a range of methods which rely on monitoring network or system-level events. However, with the growing use of the dark web by mal-actors to share exploits, breaches, and data leaks, the use of such information to strengthen defence mechanisms becomes an intriguing prospect. In this paper, we present our efforts to develop a text mining engine (Threat Miner) which analyses data from dark web forums and transforms it into actionable intelligence. Leveraging cutting-edge machine learning techniques and utilising a bespoke threat dictionary, Threat Miner extracts useful information from dark web forums into STIX form, enabling it to be used with threat intelligence platforms. We also present the results of a thorough evaluation
of our scheme which was conducted with the CrimeBB dataset to understand the feasibility of the approach as well as its effectiveness in strengthening defence capability against cyber threats.

Item Type: Article
31 October 2022Accepted
Subjects: CAH11 - computing > CAH11-01 - computing > CAH11-01-01 - computer science
Divisions: Faculty of Computing, Engineering and the Built Environment > School of Computing and Digital Technology > Networks and Cyber Security
Depositing User: Junaid Arshad
Date Deposited: 06 Dec 2022 16:07
Last Modified: 12 Dec 2022 11:58

Actions (login required)

View Item View Item


In this section...