D-Miner: A Framework For Mining, Searching, Visualizing, And Alerting On Darknet Events

Abstract

Darknet resources are mined for their data in order to provide possible cyber threat intelligence to network operators. Network operators, however, often have limited resources with which to search the darknet for threats. Previous work in this area has failed to address this use case instead focusing on sales volumes, vendor characteristics, and identifying the sale of zero day exploits. In this paper we present D-miner: A modular framework designed to mine data from websites, specializing in darknet sites, and parse the data into JSON objects for searching, visualizations, and alerts. This open source solution to darknet mining is intended to make it easier for network shareholders to monitor the darknet for potential threats. We show how D-miner is customizable for multiple use cases and how it can be used to visualize data to aid analysis.

Publication Date

12-19-2017

Publication Title

2017 IEEE Conference on Communications and Network Security, CNS 2017

Volume

2017-January

Number of Pages

1-9

Document Type

Article; Proceedings Paper

Personal Identifier

scopus

DOI Link

https://doi.org/10.1109/CNS.2017.8228628

Socpus ID

85046544679 (Scopus)

Source API URL

https://api.elsevier.com/content/abstract/scopus_id/85046544679

This document is currently not available here.

Share

COinS