AZSecure Hacker Assets Portal: Cyber threat intelligence and malware analysis

Sagar Samtani, Kory Chinn, Cathy Larson, Hsinchun Chen

Research output: Chapter in Book/Report/Conference proceedingConference contribution

12 Citations (Scopus)

Abstract

Cyber threats pose grave national security dangers to the US. Many cyber-Attacks today are executed with ever-growing collection of malicious tools. Cyber threat intelligence (CTI) and malware analysis portals aim to provide knowledge and tools to help prevent and mitigate attacks. However, current CTI and malware analysis portals and techniques have been criticized for being too reactive as they rely on data collected from past cyber-Attacks. Online hacker forums provide a novel source of data that can inform a proactive CTI and malware portal. This research demonstrates the AZSecure Hacker Assets Portal. This portal collects and analyzes malicious assets directly from the largely untapped and rich data source of online hacker communities by utilizing state-of-The-Art machine learning techniques. This paper explores the development and evolution of the AZSecure Hacker Assets Portal. We also present key portal functionalities such as asset searching, browsing, and downloading, source code visualizations and code comparison analytics, and an interactive CTI dashboard.

Original languageEnglish (US)
Title of host publicationIEEE International Conference on Intelligence and Security Informatics: Cybersecurity and Big Data, ISI 2016
PublisherInstitute of Electrical and Electronics Engineers Inc.
Pages19-24
Number of pages6
ISBN (Electronic)9781509038657
DOIs
StatePublished - Nov 15 2016
Event14th IEEE International Conference on Intelligence and Security Informatics, ISI 2015 - Tucson, United States
Duration: Sep 28 2016Sep 30 2016

Other

Other14th IEEE International Conference on Intelligence and Security Informatics, ISI 2015
CountryUnited States
CityTucson
Period9/28/169/30/16

Fingerprint

National security
Malware
Threat
Assets
Learning systems
Visualization
Attack
Online communities
Functionality
Data sources
Machine learning

Keywords

  • cyber threat intelligence
  • hacker community
  • hacker portal
  • malware analysis
  • topic modeling

ASJC Scopus subject areas

  • Information Systems
  • Artificial Intelligence
  • Computer Networks and Communications
  • Information Systems and Management
  • Safety, Risk, Reliability and Quality

Cite this

Samtani, S., Chinn, K., Larson, C., & Chen, H. (2016). AZSecure Hacker Assets Portal: Cyber threat intelligence and malware analysis. In IEEE International Conference on Intelligence and Security Informatics: Cybersecurity and Big Data, ISI 2016 (pp. 19-24). [7745437] Institute of Electrical and Electronics Engineers Inc.. https://doi.org/10.1109/ISI.2016.7745437

AZSecure Hacker Assets Portal : Cyber threat intelligence and malware analysis. / Samtani, Sagar; Chinn, Kory; Larson, Cathy; Chen, Hsinchun.

IEEE International Conference on Intelligence and Security Informatics: Cybersecurity and Big Data, ISI 2016. Institute of Electrical and Electronics Engineers Inc., 2016. p. 19-24 7745437.

Research output: Chapter in Book/Report/Conference proceedingConference contribution

Samtani, S, Chinn, K, Larson, C & Chen, H 2016, AZSecure Hacker Assets Portal: Cyber threat intelligence and malware analysis. in IEEE International Conference on Intelligence and Security Informatics: Cybersecurity and Big Data, ISI 2016., 7745437, Institute of Electrical and Electronics Engineers Inc., pp. 19-24, 14th IEEE International Conference on Intelligence and Security Informatics, ISI 2015, Tucson, United States, 9/28/16. https://doi.org/10.1109/ISI.2016.7745437
Samtani S, Chinn K, Larson C, Chen H. AZSecure Hacker Assets Portal: Cyber threat intelligence and malware analysis. In IEEE International Conference on Intelligence and Security Informatics: Cybersecurity and Big Data, ISI 2016. Institute of Electrical and Electronics Engineers Inc. 2016. p. 19-24. 7745437 https://doi.org/10.1109/ISI.2016.7745437
Samtani, Sagar ; Chinn, Kory ; Larson, Cathy ; Chen, Hsinchun. / AZSecure Hacker Assets Portal : Cyber threat intelligence and malware analysis. IEEE International Conference on Intelligence and Security Informatics: Cybersecurity and Big Data, ISI 2016. Institute of Electrical and Electronics Engineers Inc., 2016. pp. 19-24
@inproceedings{e5213f1d977b45c7aa6f4e21ffe77841,
title = "AZSecure Hacker Assets Portal: Cyber threat intelligence and malware analysis",
abstract = "Cyber threats pose grave national security dangers to the US. Many cyber-Attacks today are executed with ever-growing collection of malicious tools. Cyber threat intelligence (CTI) and malware analysis portals aim to provide knowledge and tools to help prevent and mitigate attacks. However, current CTI and malware analysis portals and techniques have been criticized for being too reactive as they rely on data collected from past cyber-Attacks. Online hacker forums provide a novel source of data that can inform a proactive CTI and malware portal. This research demonstrates the AZSecure Hacker Assets Portal. This portal collects and analyzes malicious assets directly from the largely untapped and rich data source of online hacker communities by utilizing state-of-The-Art machine learning techniques. This paper explores the development and evolution of the AZSecure Hacker Assets Portal. We also present key portal functionalities such as asset searching, browsing, and downloading, source code visualizations and code comparison analytics, and an interactive CTI dashboard.",
keywords = "cyber threat intelligence, hacker community, hacker portal, malware analysis, topic modeling",
author = "Sagar Samtani and Kory Chinn and Cathy Larson and Hsinchun Chen",
year = "2016",
month = "11",
day = "15",
doi = "10.1109/ISI.2016.7745437",
language = "English (US)",
pages = "19--24",
booktitle = "IEEE International Conference on Intelligence and Security Informatics: Cybersecurity and Big Data, ISI 2016",
publisher = "Institute of Electrical and Electronics Engineers Inc.",
address = "United States",

}

TY - GEN

T1 - AZSecure Hacker Assets Portal

T2 - Cyber threat intelligence and malware analysis

AU - Samtani, Sagar

AU - Chinn, Kory

AU - Larson, Cathy

AU - Chen, Hsinchun

PY - 2016/11/15

Y1 - 2016/11/15

N2 - Cyber threats pose grave national security dangers to the US. Many cyber-Attacks today are executed with ever-growing collection of malicious tools. Cyber threat intelligence (CTI) and malware analysis portals aim to provide knowledge and tools to help prevent and mitigate attacks. However, current CTI and malware analysis portals and techniques have been criticized for being too reactive as they rely on data collected from past cyber-Attacks. Online hacker forums provide a novel source of data that can inform a proactive CTI and malware portal. This research demonstrates the AZSecure Hacker Assets Portal. This portal collects and analyzes malicious assets directly from the largely untapped and rich data source of online hacker communities by utilizing state-of-The-Art machine learning techniques. This paper explores the development and evolution of the AZSecure Hacker Assets Portal. We also present key portal functionalities such as asset searching, browsing, and downloading, source code visualizations and code comparison analytics, and an interactive CTI dashboard.

AB - Cyber threats pose grave national security dangers to the US. Many cyber-Attacks today are executed with ever-growing collection of malicious tools. Cyber threat intelligence (CTI) and malware analysis portals aim to provide knowledge and tools to help prevent and mitigate attacks. However, current CTI and malware analysis portals and techniques have been criticized for being too reactive as they rely on data collected from past cyber-Attacks. Online hacker forums provide a novel source of data that can inform a proactive CTI and malware portal. This research demonstrates the AZSecure Hacker Assets Portal. This portal collects and analyzes malicious assets directly from the largely untapped and rich data source of online hacker communities by utilizing state-of-The-Art machine learning techniques. This paper explores the development and evolution of the AZSecure Hacker Assets Portal. We also present key portal functionalities such as asset searching, browsing, and downloading, source code visualizations and code comparison analytics, and an interactive CTI dashboard.

KW - cyber threat intelligence

KW - hacker community

KW - hacker portal

KW - malware analysis

KW - topic modeling

UR - http://www.scopus.com/inward/record.url?scp=85004010289&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=85004010289&partnerID=8YFLogxK

U2 - 10.1109/ISI.2016.7745437

DO - 10.1109/ISI.2016.7745437

M3 - Conference contribution

AN - SCOPUS:85004010289

SP - 19

EP - 24

BT - IEEE International Conference on Intelligence and Security Informatics: Cybersecurity and Big Data, ISI 2016

PB - Institute of Electrical and Electronics Engineers Inc.

ER -