University of Twente Student Theses
Bridging the Gap : From CWEs to TTPs in Cybersecurity Attack Kill Chains
Wijnbergen, Max (2024) Bridging the Gap : From CWEs to TTPs in Cybersecurity Attack Kill Chains.
|
PDF
626kB |
| Abstract: | In cybersecurity, the main aim is to understand and mitigate threats to keep digital assets and private information secure. With technology advancing as fast as it does it is very difficult to keep everything secure. This research paper aims to bridge the gap between Common Weakness Enumerations (CWEs) and Tactics, Techniques, and Procedures (TTPs) by exploring the possibility of finding correlations between them through a comprehensive analysis of historical data in the form of a Cyber Threat Intelligence (CTI) map containing historical incident data. By systematically identifying the CWEs and TTPs contained within each file in the CTI map, correlations can be established to help bridge the gap between CWEs and TTPs. This is done by preprocessing the data in the files of the CTI map. The findings help provide insights into the correlation between CWEs and TTPs. This has the potential to improve the effectiveness of threat detection and mitigation. The methodology used in this study exists out of preprocessing data, and the application of the Jaccard index to identify correlations between identified CWEs and TTPs. Through this research, we aim to create a progression by offering a new perspective on the integration of CWE and TTP data. |
| Item Type: | Essay (Bachelor) |
| Faculty: | EEMCS: Electrical Engineering, Mathematics and Computer Science |
| Subject: | 54 computer science |
| Programme: | Business & IT BSc (56066) |
| Link to this item: | https://purl.utwente.nl/essays/101144 |
| Export this item as: | BibTeX EndNote HTML Citation Reference Manager |
Show download statistics for this publication
Show download statistics for this publicationRepository Staff Only: item control page