Automated Framework for Scalable Collection and Intelligent Analytics of Hacker IRC Information

Jiakai Yu, Cihan Tunc, Salim Hariri

Research output: Chapter in Book/Report/Conference proceedingConference contribution

5 Scopus citations

Abstract

Cyber security is a challenging research problem especially when one considers exponential growth in information technologies. Most previous cyber security research have generally centered on securing and protecting physical resources (computers, network devices, and mobile platforms), protocols and applications. However, little work has focused on the human side and behavior, what motivates cyber attackers to launch attacks, their goals, and where they get their hacking and attacking tools. In this paper, we present an automated approach to collect information about hackers, and attempt to understand their behaviors and goals. Internet Relay Chat (IRC) forums have been widely used by hackers to exchange data, tools and train new novice hackers. We present our approach to implement an automated framework that uses several bots to collect IRC messages from malicious forums and analyze them. A resilient botnet mechanism is utilized to ensure complete IRC data collection. In addition, we present an intelligent hacking language module based on Stanford CoreNLP to analyze hacker activity. Our experimental results show that our botnets can be used to effectively monitor, analyze, and predict hacker activities and goals.

Original languageEnglish (US)
Title of host publicationProceedings - 2016 International Conference on Cloud and Autonomic Computing, ICCAC 2016
Subtitle of host publicationCo-located with the 10th IEEE International Conference on Self-Adaptive and Self-Organizing Systems, SASO 2016
EditorsIndranil Gupta, Yixin Diao
PublisherInstitute of Electrical and Electronics Engineers Inc.
Pages33-39
Number of pages7
ISBN (Electronic)9781509035366
DOIs
StatePublished - Dec 5 2016
Event2016 International Conference on Cloud and Autonomic Computing, ICCAC 2016 - Augsburg, Germany
Duration: Sep 12 2016Sep 16 2016

Publication series

NameProceedings - 2016 International Conference on Cloud and Autonomic Computing, ICCAC 2016: Co-located with the 10th IEEE International Conference on Self-Adaptive and Self-Organizing Systems, SASO 2016

Other

Other2016 International Conference on Cloud and Autonomic Computing, ICCAC 2016
Country/TerritoryGermany
CityAugsburg
Period9/12/169/16/16

Keywords

  • Internet Relay Chat (IRC)
  • Stanford CoreNLP
  • cyber security
  • hacker analysis

ASJC Scopus subject areas

  • Artificial Intelligence
  • Computer Networks and Communications

Fingerprint

Dive into the research topics of 'Automated Framework for Scalable Collection and Intelligent Analytics of Hacker IRC Information'. Together they form a unique fingerprint.

Cite this