TINKER: A framework for Open source Cyberthreat Intelligence. (arXiv:2102.05571v5 [cs.CR] UPDATED)

Threat intelligence on malware attacks and campaigns is increasingly being
shared with other security experts for a cost or for free. Other security
analysts use this intelligence to inform them of indicators of compromise,
attack techniques, and preventative actions. Security analysts prepare threat
analysis reports after investigating an attack, an emerging cyber threat, or a
recently discovered vulnerability. Collectively known as cyber threat
intelligence (CTI), the reports are typically in an unstructured format and,
therefore, challenging to integrate seamlessly into …

arxiv cyberthreat framework intelligence open source