A cost-efficient threat intelligence platform powered by crowdsourced OSINT

Alexander Khalil Daou, Fudong Li, Stavros Shiaeles

Research output: Chapter in Book/Report/Conference proceedingConference contribution

88 Downloads (Pure)

Abstract

Cyberattacks are a primary concern for organisations of all kinds, costing billions of dollars globally each year. As more businesses begin operating online, and as attackers develop more advanced malware and evolve their modus operandi, the demand for effective cyber security measures grows exponentially. One such measure is the threat intelligence platform (TIP): a system which gathers and presents information about current cyber threats, providing actionable insight to aid security teams in employing a more proactive approach to thwarting attacks. These platforms and their accompanying intelligence feeds can be costly when purchased from a commercial vendor, creating a financial barrier for small and medium-sized enterprises. This paper explores the use of crowdsourced open-source intelligence (OSINT) as an alternative to commercial threat intelligence. A model TIP is developed using a combination of crowdsourced OSINT, freeware, and cloud services, demonstrating the feasibility and benefits of using OSINT over commercial solutions. The developed TIP is evaluated using a dataset containing 16,713 malware samples collected via the MalwareBazaar repository.
Original languageEnglish
Title of host publication2023 IEEE International Conference on Cyber Security and Resilience (CSR)
PublisherInstitute of Electrical and Electronics Engineers Inc.
Number of pages6
ISBN (Electronic)9798350311709
ISBN (Print)9798350311716
DOIs
Publication statusPublished - 28 Aug 2023
Event3rd IEEE International Conference on Cyber Security and Resilience, CSR 2023 - Hybrid, Venice, Italy
Duration: 31 Jul 20232 Aug 2023

Conference

Conference3rd IEEE International Conference on Cyber Security and Resilience, CSR 2023
Country/TerritoryItaly
CityHybrid, Venice
Period31/07/232/08/23

Cite this