Search Results for author:
Found 8 papers, 2 papers with code
Advancing TTP Analysis: Harnessing the Power of Encoder-Only and Decoder-Only Language Models with Retrieval Augmented Generation
Tactics, Techniques, and Procedures (TTPs) outline the methods attackers use to exploit vulnerabilities.
Are Existing Out-Of-Distribution Techniques Suitable for Network Intrusion Detection?
Our findings suggest that existing detectors can identify a consistent portion of new malicious traffic, and that improved embedding spaces enhance detection.
On the Uses of Large Language Models to Interpret Ambiguous Cyberattack Descriptions
Meanwhile, advancements in AI have led to the increasing use of Natural Language Processing (NLP) algorithms to assist the various tasks in cyber operations.
HeATed Alert Triage (HeAT): Transferrable Learning to Extract Multistage Attack Campaigns
With growing sophistication and volume of cyber attacks combined with complex network structures, it is becoming extremely difficult for security analysts to corroborate evidences to identify multistage campaigns on their network.
SAGE: Intrusion Alert-driven Attack Graph Extractor
We propose to automatically learn AGs based on actions observed through intrusion alerts, without prior expert knowledge.
On the Evaluation of Sequential Machine Learning for Network Intrusion Detection
Recent advances in deep learning renewed the research interests in machine learning for Network Intrusion Detection Systems (NIDS).
On the Veracity of Cyber Intrusion Alerts Synthesized by Generative Adversarial Networks
Recreating cyber-attack alert data with a high level of fidelity is challenging due to the intricate interaction between features, non-homogeneity of alerts, and potential for rare yet critical samples.
Probabilistic Modeling and Inference for Obfuscated Cyber Attack Sequences
A key element in defending computer networks is to recognize the types of cyber attacks based on the observed malicious activities.
Cryptography and Security
