Cyber Threat Intelligence (CTI) Quality Metrics Dataset

Citation Author(s):
Georgios
Sakellariou
Submitted by:
George Sakellariou
Last updated:
Mon, 10/02/2023 - 19:00
DOI:
10.21227/fk3m-j666
Data Format:
License:
1175 Views
Categories:
Keywords:
0
0 ratings - Please login to submit your rating.

Abstract 

Cyber Threat Intelligence (CTI) Quality Metrics Introduction

This dataset is part of the respective publication regarding the metrics of CTI quality.

License All datasets are available under a GNUv3 General Public License.

The dataset was collected and cleaned from the Cybersecurity & Infrastructure Security Agency (CISA), the Japan Computer Emergency Response Team Coordination Center (JPCERT/CC), the Bangladesh Government’s e-Government Computer Incident Response Team (BGD e-GOV CIRT), and the Australian Cyber Security Centre (ACSC). It was created by 1706 alert files and 123 security reports. Specifically, 97 alerts were from ASCS, 589 were from BGD e-GOV CIRT, 473 were from CISA, and 547 were from JPCERT; at the same time, 10 reports were from ASCS and 113 from CISA.

All those data have been collected, normalized, and cleaned based on the requirements of the respective project/paper.

Instructions: 

CTI Dataset Statistics Report

Alert files number: 1706

SourceNumberAlerts of AU97Alerts of BGD589Alerts of CISA473Alerts of JPCERT547

Average words per alert file : 6956

Report files number: 123

SourceNumberReports of AU10Reports of CISA113

Average words per report file : 2477.9268292682927

Stixv2 files number: 50

  • Bundle objects number: 50
  • Report objects number: 50
  • Identity objects number: 50
  • Indicator objects number: 67307
  • Vulnerability objects number: 4
  • Threat-actor objects number: 4
Observables:
  • URL objects number: 67
  • Domain Name:value objects number: 379
  • File objects number: 613
  • IPv4 Address objects number: 66173
  • Email Message objects number: 17

CPEs number: 945526

  • Application CPEs number: 818333
  • Operating System CPEs number: 84954
  • Hardware CPEs number: 42239

Delta Industry domains number: 26

STIX V2.1 Schema

  • Stix V2.1 schema sdos objects: 19
  • STIX V2.1 Schema observables objects: 18
  • STIX V2.1 Schema common objects: 18
  • STIX V2.1 Schema sros objects: 2