Date of Graduation
Master of Science in Computer Science (MS)
Computer Science & Computer Engineering
Second Committee Member
Cybersecurity;Machine Learning;Natural Language Processing
Open-Source Intelligence (OSINT) is largely regarded as a necessary component for cybersecurity intelligence gathering to secure network systems. With the advancement of artificial intelligence (AI) and increasing usage of social media, like Twitter, we have a unique opportunity to obtain and aggregate information from social media. In this study, we propose an AI-based scheme capable of automatically pulling information from Twitter, filtering out security-irrelevant tweets, performing natural language analysis to correlate the tweets about each cybersecurity event (e.g., a malware campaign), and validating the information. This scheme has many applications, such as providing a means for security operators to gain insight into ongoing events and helping them prioritize vulnerabilities to deal with. To give examples of the possible uses, we present three case studies demonstrating the event discovery and investigation processes. We also examine the potential of OSINT for identifying the network protocols associated with specific events, which can aid in the mitigation procedures by informing operators if the vulnerability is exploitable given their system's network configurations.
Dale, D. (2023). Open Source Intelligence for Cybersecurity Events via Twitter Data. Graduate Theses and Dissertations Retrieved from https://scholarworks.uark.edu/etd/4982