BEGIN:VCALENDAR
VERSION:2.0
PRODID:-//pretalx//pretalx.com//hack-lu-2024//talk//AEV77X
BEGIN:VTIMEZONE
TZID:CET
BEGIN:STANDARD
DTSTART:20001029T040000
RRULE:FREQ=YEARLY;BYDAY=-1SU;BYMONTH=10
TZNAME:CET
TZOFFSETFROM:+0200
TZOFFSETTO:+0100
END:STANDARD
BEGIN:DAYLIGHT
DTSTART:20000326T030000
RRULE:FREQ=YEARLY;BYDAY=-1SU;BYMONTH=3
TZNAME:CEST
TZOFFSETFROM:+0100
TZOFFSETTO:+0200
END:DAYLIGHT
END:VTIMEZONE
BEGIN:VEVENT
UID:pretalx-hack-lu-2024-AEV77X@pretalx.com
DTSTART;TZID=CET:20241022T143000
DTEND;TZID=CET:20241022T150000
DESCRIPTION:In the current digital landscape\, organizations often do not b
 ecome aware immediately when their data is compromised and sold online. Ou
 r objective is to minimize the duration between the exposure of data on th
 e internet and its detection by the public. The dark web serves as a prima
 ry marketplace for the trade of personal information\, accessible safely o
 nly through the use of the Tor browser. This paper focuses on monitoring s
 ignificant trading forums on the dark web and demonstrates the method of w
 eb scraping specifically designed for dark web sites. Utilizing data harve
 sted from these sites\, we have trained a BERT classification model to cat
 egorize transaction posts into five distinct types of data leaks\, enablin
 g rapid identification of the leak type associated with each post.\n\nFurt
 her\, we employ the Retrieval-Augmented Generation (RAG) technique to vect
 orize dark web data\, maintaining privacy while leveraging mainstream larg
 e language models to address concerns pertinent to cybersecurity analysts.
  This approach allows researchers to analyze dark web data effectively. Ul
 timately\, the data collected from the dark web is formatted into STIX (St
 ructured Threat Information Expression) and integrated into the MISP (Malw
 are Information Sharing Platform) system to automate the generation of Cyb
 er Threat Intelligence (CTI) reports. This methodology not only enhances t
 he timeliness and accuracy of threat detection but also contributes to mor
 e efficient and proactive cybersecurity management.
DTSTAMP:20260612T052803Z
LOCATION:Europe - Main Room
SUMMARY:Automating Dark Web CTI Reports ​ with RAG Insight for MISP Shari
 ng - Shing-Li Hung
URL:https://pretalx.com/hack-lu-2024/talk/AEV77X/
END:VEVENT
END:VCALENDAR