The Rise of GoodFATR: A Novel Accuracy Comparison Methodology for Indicator Extraction Tools

Caballero, Juan; Gomez, Gibran; Matic, Srdjan; Sánchez, Gustavo; Sebastián, Silvia; Villacañas, Arturo

doi:10.1016/j.future.2023.02.012

Cited by 10 publications

(5 citation statements)

References 16 publications

Supporting

Mentioning

Contrasting

Unclassified

Order By: Relevance

“…Around 39,139 SM posts were web scrapped from January 2018 till March 2021. The data was extracted using the scrapping library of Python named, Selenium and Beautiful Soup (Caballero et al ., 2023). We were able to access public data from the official Facebook pages of the identified firms.…”

Section: Methodsmentioning

confidence: 99%

How should B2B firms create image content for high social media engagement? A multimodal analysis

Singh

Gandhi

Kar

et al. 2023

IMDS

View full text Add to dashboard Cite

PurposeThis study evaluates the effect of the media image content of business to business (B2B) organizations to accelerate social media engagement. It highlights the importance of strategically designing image content for business marketing strategies.Design/methodology/approachThis study designed a computation extensive research model based upon the stimulus-organism-response (SOR) theory using 39,139 Facebook posts of 125 organizations selected from Fortune 500 firms. Attributes from images and text were estimated using deep learning models. Subsequently, inferential analysis was established with ordinary least squares regression. Further machine learning algorithms, like support vector regression, k-nearest neighbour, decision tree and random forest, are used to analyze the significance and robustness of the proposed model for predicting engagement metrics.FindingsThe results indicate that the social media (SM) image content of B2B firms significantly impacts their social media engagement. The visual and linguistic attributes are extracted from the image using deep learning. The distinctive effect of each feature on social media engagement (SME) is empirically verified in this study.Originality/valueThis research presents practical insights formulated by embedding marketing, advertising, image processing and statistical knowledge of SM analytics. The findings of this study provide evidence for the stimulating effect of image content concerning SME. Based on the theoretical implications of this study, marketing and media content practitioners can enhance the efficacy of SM posts in engaging users.

show abstract

Section: Methodsmentioning

confidence: 99%

How should B2B firms create image content for high social media engagement? A multimodal analysis

Singh

Gandhi

Kar

et al. 2023

IMDS

View full text Add to dashboard Cite

show abstract

“…Os resultados foram positivos, porém os autores relataram vários desafios relacionados ao rastreamento e extrac ¸ão de ToIs relevantes. [Caballero et al 2023], apresentaram uma plataforma para extrair IoCs de seis diferentes fontes: Blogs RSS, Twitter e Telegram, bem como Malpedia, APTnotes e ChainSmith, que são repositórios de projetos relacionados à seguranc ¸a cibernética. Além de terem desenvolvido a ferramenta de extrac ¸ão de IoCs, os autores relataram que fizeram uma análise para avaliar a precisão de outras 7 ferramentas de extrac ¸ão de IoCs.…”

Section: Trabalhos Relacionadosunclassified

“…Com relac ¸ão à análise e extrac ¸ão de IoCs, [Niakanlahiji et al 2019] investigam a existência de IoCs no Twitter, enquanto que [Zhang et al 2019] extraem IoCs realizando buscas na Surface Web, usando como entrada indicadores como domínios e enderec ¸os IP que tenham sido considerados suspeitos de acordo com informac ¸ões de ameac ¸as de código aberto. Por sua vez, [Caballero et al 2023] direcionam seus esforc ¸os para extrair IoCs de seis diferentes fontes: Blogs RSS, Twitter e Telegram, bem como Malpedia, APTnotes e ChainSmith, que são repositórios de projetos relacionados à seguranc ¸a cibernética. No entanto, nenhuma dessas investigac ¸ões sobre IoCs foram conduzidas na Dark Web.…”

Section: Introduc ¸ãOunclassified

Extração e Análise de Indicadores de Comprometimento (IoCs) em Fóruns da Dark Web

Jesus Filho,

Gabriel,

Miani

2023

Anais Do XXIII Simpósio Brasileiro De Segurança Da Informação E De Sistemas Computacionais (SBSeg 2023)

View full text Add to dashboard Cite

Com o aumento e sofisticação dos ataques aos sistemas de informação, torna-se essencial extrair inteligência de ameaças cibernéticas. Nesse sentido, os Indicadores de Comprometimento (IoCs), que consistem em sinais capazes de identificar atividades maliciosas em sistemas computacionais, merecem atenção. O presente trabalho dedica-se à extração e análise de IoCs em fóruns da Dark Web, com o objetivo de fornecer informações relevantes à segurança da informação. Os resultados encontrados indicam uma incidência de IoCs superior a 26%, sendo a maioria URLs. Além disso, constatou-se que os posts das categorias relacionadas à computação possuem quase o dobro de IoCs em comparação com outras categorias.

show abstract

“…However, these regular expressions alone are not sufficient for security reports. We found, by examining a small sample set of 50 security reports that 13 of them included so-called defanged IoCs [48]. By defanging an IoC, writers of security texts try to prevent signature-based security solutions from detecting reports themselves as malicious.…”

Section: Tokenizationmentioning

confidence: 99%

“…However, this also means that to detect IoCs, we must deal with defanged IoCs as well. We use the fangs identified by Good-FATR [48]: encapsulating the ". ", ":", and "@" by different brackets [({})] and/or replacing it with the words dot/at in IPv4, IPv6, URLs, emails and filenames, and replacing the scheme or backslash in URLs (e.g., hxxp:// instead of http://).…”

Section: Tokenizationmentioning

confidence: 99%

Comprehending security events: context-based identification and explanation

van Ede

View full text Add to dashboard Cite

With the increased sophistication of cyber attacks, organizations are under constant threat of data breaches, disruption of business processes and reputation loss. As preventive measures are not infallible, organizations have started to more closely monitor their devices and network infrastructure for malicious activity. By swift detection of an attack at an early stage, organizations can take mitigating actions limiting the impact to their organization. This detection can be done internally or is outsourced to a Security Operations Center (SOC). The SOC deploys automated detectors that monitor devices and network traffic for suspicious events, which are subsequently sent to the SOC. Here, security operators manually analyze these events, verify whether they constitute an attack and, if required, take action.Analyzing security events is not straightforward and requires highly skilled operators. We identified three major challenges that operators face during analysis:

show abstract

The Rise of GoodFATR: A Novel Accuracy Comparison Methodology for Indicator Extraction Tools

Cited by 10 publications

References 16 publications

How should B2B firms create image content for high social media engagement? A multimodal analysis

How should B2B firms create image content for high social media engagement? A multimodal analysis

Extração e Análise de Indicadores de Comprometimento (IoCs) em Fóruns da Dark Web

Comprehending security events: context-based identification and explanation

Contact Info

Product

Resources

About