STIX and TAXII based Cyber Threat Intelligence Sharing Parser and Intrusion Detection System Rules Generator
Bachelor thesis
Permanent lenke
https://hdl.handle.net/11250/3009013Utgivelsesdato
2022Metadata
Vis full innførselSamlinger
- Studentoppgaver (TN-IDE) [823]
Sammendrag
There is a high focus in cyber threats, and cyber crime avoidance in the IT industry. StructuredThreat Information Expression (STIX) is a standardized language and file format that is used tostore and share safety treat information. A lot of work has been conducted making machine learningmodels and data learning models to collect and share STIX files. The number of STIX files generatedin real-time is high, and it is time consuming for computer safety advisers to read through thesefiles. In this project the goal is to create a software that gather STIX files use Natural LanguageProcessing (NLP) to gather relevant information, and generate alerts in a intrusion preventionsystem. There is a high focus in cyber threats, and cyber crime avoidance in the IT industry. StructuredThreat Information Expression (STIX) is a standardized language and file format that is used tostore and share safety treat information. A lot of work has been conducted making machine learningmodels and data learning models to collect and share STIX files. The number of STIX files generatedin real-time is high, and it is time consuming for computer safety advisers to read through thesefiles. In this project the goal is to create a software that gather STIX files use Natural LanguageProcessing (NLP) to gather relevant information, and generate alerts in a intrusion preventionsystem.