Identifying, collecting, and presenting hacker community data: Forums, IRC, carding shops, and DNMs

Po Yi Du, Ning Zhang, Mohammedreza Ebrahimi, Sagar Samtani, Ben Lazarine, Nolan Arnold, Rachael Dunn, Sandeep Suntwal, Guadalupe Angeles, Robert Schweitzer, Hsinchun Chen

Research output: Chapter in Book/Report/Conference proceedingConference contribution

1 Citation (Scopus)

Abstract

Cyber-attacks cost the global economy over $450 billion annually. To combat this issue, researchers and practitioners put enormous efforts into developing Cyber Threat Intelligence, or the process of identifying emerging threats and key hackers. However, the reliance on internal network data to has resulted in inherently reactive intelligence. CTI experts have urged the importance of proactively studying the large, ever-evolving online hacker community. Despite their CTI value, collecting data from hacker community platforms is a non-trivial task. In this paper, we summarize our efforts in systematically identifying and automatically collecting a large-scale of hacker forums, carding shops, Internet-Relay-Chat, and Dark Net Marketplaces. We also present our efforts to provide this data to the larger CTI community via the AZSecure Hacker Assets Portal (www.azsecure-hap.com). With our methodology, we collected 102 platforms for a total of 43,981,647 records. To the best of our knowledge, this compilation of hacker community data is the largest such collection in academia.

Original languageEnglish (US)
Title of host publication2018 IEEE International Conference on Intelligence and Security Informatics, ISI 2018
EditorsDongwon Lee, Ghita Mezzour, Ponnurangam Kumaraguru, Nitesh Saxena
PublisherInstitute of Electrical and Electronics Engineers Inc.
Pages70-75
Number of pages6
ISBN (Electronic)9781538678480
DOIs
StatePublished - Dec 24 2018
Event16th IEEE International Conference on Intelligence and Security Informatics, ISI 2018 - Miami, United States
Duration: Nov 9 2018Nov 11 2018

Other

Other16th IEEE International Conference on Intelligence and Security Informatics, ISI 2018
CountryUnited States
CityMiami
Period11/9/1811/11/18

Fingerprint

hacker
Internet
community
Costs
intelligence
threat
data network
chat
Carding
assets
expert
economy
Threat
methodology
costs
Values

Keywords

  • Carding Shops
  • Dark Net Marketplaces
  • Hacker community data collection
  • Hacker forums
  • Internet-Relay-Chat

ASJC Scopus subject areas

  • Computer Networks and Communications
  • Information Systems and Management
  • Safety, Risk, Reliability and Quality
  • Communication

Cite this

Du, P. Y., Zhang, N., Ebrahimi, M., Samtani, S., Lazarine, B., Arnold, N., ... Chen, H. (2018). Identifying, collecting, and presenting hacker community data: Forums, IRC, carding shops, and DNMs. In D. Lee, G. Mezzour, P. Kumaraguru, & N. Saxena (Eds.), 2018 IEEE International Conference on Intelligence and Security Informatics, ISI 2018 (pp. 70-75). [8587327] Institute of Electrical and Electronics Engineers Inc.. https://doi.org/10.1109/ISI.2018.8587327

Identifying, collecting, and presenting hacker community data : Forums, IRC, carding shops, and DNMs. / Du, Po Yi; Zhang, Ning; Ebrahimi, Mohammedreza; Samtani, Sagar; Lazarine, Ben; Arnold, Nolan; Dunn, Rachael; Suntwal, Sandeep; Angeles, Guadalupe; Schweitzer, Robert; Chen, Hsinchun.

2018 IEEE International Conference on Intelligence and Security Informatics, ISI 2018. ed. / Dongwon Lee; Ghita Mezzour; Ponnurangam Kumaraguru; Nitesh Saxena. Institute of Electrical and Electronics Engineers Inc., 2018. p. 70-75 8587327.

Research output: Chapter in Book/Report/Conference proceedingConference contribution

Du, PY, Zhang, N, Ebrahimi, M, Samtani, S, Lazarine, B, Arnold, N, Dunn, R, Suntwal, S, Angeles, G, Schweitzer, R & Chen, H 2018, Identifying, collecting, and presenting hacker community data: Forums, IRC, carding shops, and DNMs. in D Lee, G Mezzour, P Kumaraguru & N Saxena (eds), 2018 IEEE International Conference on Intelligence and Security Informatics, ISI 2018., 8587327, Institute of Electrical and Electronics Engineers Inc., pp. 70-75, 16th IEEE International Conference on Intelligence and Security Informatics, ISI 2018, Miami, United States, 11/9/18. https://doi.org/10.1109/ISI.2018.8587327
Du PY, Zhang N, Ebrahimi M, Samtani S, Lazarine B, Arnold N et al. Identifying, collecting, and presenting hacker community data: Forums, IRC, carding shops, and DNMs. In Lee D, Mezzour G, Kumaraguru P, Saxena N, editors, 2018 IEEE International Conference on Intelligence and Security Informatics, ISI 2018. Institute of Electrical and Electronics Engineers Inc. 2018. p. 70-75. 8587327 https://doi.org/10.1109/ISI.2018.8587327
Du, Po Yi ; Zhang, Ning ; Ebrahimi, Mohammedreza ; Samtani, Sagar ; Lazarine, Ben ; Arnold, Nolan ; Dunn, Rachael ; Suntwal, Sandeep ; Angeles, Guadalupe ; Schweitzer, Robert ; Chen, Hsinchun. / Identifying, collecting, and presenting hacker community data : Forums, IRC, carding shops, and DNMs. 2018 IEEE International Conference on Intelligence and Security Informatics, ISI 2018. editor / Dongwon Lee ; Ghita Mezzour ; Ponnurangam Kumaraguru ; Nitesh Saxena. Institute of Electrical and Electronics Engineers Inc., 2018. pp. 70-75
@inproceedings{cbd508dae2bb4345854662f8f6bdad85,
title = "Identifying, collecting, and presenting hacker community data: Forums, IRC, carding shops, and DNMs",
abstract = "Cyber-attacks cost the global economy over $450 billion annually. To combat this issue, researchers and practitioners put enormous efforts into developing Cyber Threat Intelligence, or the process of identifying emerging threats and key hackers. However, the reliance on internal network data to has resulted in inherently reactive intelligence. CTI experts have urged the importance of proactively studying the large, ever-evolving online hacker community. Despite their CTI value, collecting data from hacker community platforms is a non-trivial task. In this paper, we summarize our efforts in systematically identifying and automatically collecting a large-scale of hacker forums, carding shops, Internet-Relay-Chat, and Dark Net Marketplaces. We also present our efforts to provide this data to the larger CTI community via the AZSecure Hacker Assets Portal (www.azsecure-hap.com). With our methodology, we collected 102 platforms for a total of 43,981,647 records. To the best of our knowledge, this compilation of hacker community data is the largest such collection in academia.",
keywords = "Carding Shops, Dark Net Marketplaces, Hacker community data collection, Hacker forums, Internet-Relay-Chat",
author = "Du, {Po Yi} and Ning Zhang and Mohammedreza Ebrahimi and Sagar Samtani and Ben Lazarine and Nolan Arnold and Rachael Dunn and Sandeep Suntwal and Guadalupe Angeles and Robert Schweitzer and Hsinchun Chen",
year = "2018",
month = "12",
day = "24",
doi = "10.1109/ISI.2018.8587327",
language = "English (US)",
pages = "70--75",
editor = "Dongwon Lee and Ghita Mezzour and Ponnurangam Kumaraguru and Nitesh Saxena",
booktitle = "2018 IEEE International Conference on Intelligence and Security Informatics, ISI 2018",
publisher = "Institute of Electrical and Electronics Engineers Inc.",

}

TY - GEN

T1 - Identifying, collecting, and presenting hacker community data

T2 - Forums, IRC, carding shops, and DNMs

AU - Du, Po Yi

AU - Zhang, Ning

AU - Ebrahimi, Mohammedreza

AU - Samtani, Sagar

AU - Lazarine, Ben

AU - Arnold, Nolan

AU - Dunn, Rachael

AU - Suntwal, Sandeep

AU - Angeles, Guadalupe

AU - Schweitzer, Robert

AU - Chen, Hsinchun

PY - 2018/12/24

Y1 - 2018/12/24

N2 - Cyber-attacks cost the global economy over $450 billion annually. To combat this issue, researchers and practitioners put enormous efforts into developing Cyber Threat Intelligence, or the process of identifying emerging threats and key hackers. However, the reliance on internal network data to has resulted in inherently reactive intelligence. CTI experts have urged the importance of proactively studying the large, ever-evolving online hacker community. Despite their CTI value, collecting data from hacker community platforms is a non-trivial task. In this paper, we summarize our efforts in systematically identifying and automatically collecting a large-scale of hacker forums, carding shops, Internet-Relay-Chat, and Dark Net Marketplaces. We also present our efforts to provide this data to the larger CTI community via the AZSecure Hacker Assets Portal (www.azsecure-hap.com). With our methodology, we collected 102 platforms for a total of 43,981,647 records. To the best of our knowledge, this compilation of hacker community data is the largest such collection in academia.

AB - Cyber-attacks cost the global economy over $450 billion annually. To combat this issue, researchers and practitioners put enormous efforts into developing Cyber Threat Intelligence, or the process of identifying emerging threats and key hackers. However, the reliance on internal network data to has resulted in inherently reactive intelligence. CTI experts have urged the importance of proactively studying the large, ever-evolving online hacker community. Despite their CTI value, collecting data from hacker community platforms is a non-trivial task. In this paper, we summarize our efforts in systematically identifying and automatically collecting a large-scale of hacker forums, carding shops, Internet-Relay-Chat, and Dark Net Marketplaces. We also present our efforts to provide this data to the larger CTI community via the AZSecure Hacker Assets Portal (www.azsecure-hap.com). With our methodology, we collected 102 platforms for a total of 43,981,647 records. To the best of our knowledge, this compilation of hacker community data is the largest such collection in academia.

KW - Carding Shops

KW - Dark Net Marketplaces

KW - Hacker community data collection

KW - Hacker forums

KW - Internet-Relay-Chat

UR - http://www.scopus.com/inward/record.url?scp=85061029977&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=85061029977&partnerID=8YFLogxK

U2 - 10.1109/ISI.2018.8587327

DO - 10.1109/ISI.2018.8587327

M3 - Conference contribution

AN - SCOPUS:85061029977

SP - 70

EP - 75

BT - 2018 IEEE International Conference on Intelligence and Security Informatics, ISI 2018

A2 - Lee, Dongwon

A2 - Mezzour, Ghita

A2 - Kumaraguru, Ponnurangam

A2 - Saxena, Nitesh

PB - Institute of Electrical and Electronics Engineers Inc.

ER -