EX-Action: Automatically Extracting Threat Actions from Cyber Threat Intelligence Report Based on Multimodal Learning | Zendy

Huixia Zhang | Zendy; Guowei Shen | Zendy; Chun Guo | Zendy; Yunhe Cui | Zendy; Jiang Chao-hui | Zendy

AI Assistant Blog Pricing

Home ZAIA Blog

Open Access

EX-Action: Automatically Extracting Threat Actions from Cyber Threat Intelligence Report Based on Multimodal Learning

Author(s) -

Huixia Zhang,

Guowei Shen,

Chun Guo,

Yunhe Cui,

Jiang Chao-hui

Publication year - 2021

Publication title -

security and communication networks

Language(s) - English

Resource type - Journals

SCImago Journal Rank - 0.446

H-Index - 43

eISSN - 1939-0114

pISSN - 1939-0122

DOI - 10.1155/2021/5586335

Subject(s) - computer science , action (physics) , artificial intelligence , metric (unit) , machine learning , operations management , physics , quantum mechanics , economics

With the increasing complexity of network attacks, an active defense based on intelligence sharing becomes crucial. /ere is an important issue in intelligence analysis that automatically extracts threat actions from cyber threat intelligence (CTI) reports. To address this problem, we propose EX-Action, a framework for extracting threat actions from CTI reports. EX-Action finds threat actions by employing the natural language processing (NLP) technology and identifies actions by a multimodal learning algorithm. At the same time, a metric is used to evaluate the information completeness of the extracted action obtained by EXAction. By the experiment on the CTI reports that consisted of sentences with complex structure, the experimental result indicates that EX-Action can achieve better performance than two state-of-the-art action extraction methods in terms of accuracy, recall, precision, and F1-score.

The content you want is available to Zendy users.

Already have an account? Click here to sign in.

Having issues? You can contact us here

Accelerating Research