… A case graph G stores the state of a hunt, including the history of executed hunting steps …
of a hunt. Hunts and case graphs are two central concepts in our threat hunting model, …

… Evidential classifiers attempt to avoid incorrect binary … An evidential classifier’s basic principles
are rooted in Evidence … FS system, which utilises evidential classifier based analysis of a …

… This survey studies the threat hunting concept and provides a … In particular, we provide a
threat hunting taxonomy based on … evidential multicriteria cyber reasoning framework for threat …

… , 1 hour in length, with government threat hunters. The transcripts of these interviews were
… threat hunters. Common challenges and suggested solutions brought up by threat hunters …

… In our work, we consider threat hunting as a separate activity that is used to further enforce
security and proactively pursue advanced threats and adversaries. Therefore, our work for hy…

… As threat hunting is a new cybersecurity discipline, most TH teams operate without a … study
of threat hunt practitioners. We obtained access and interviewed 11 threat hunters associated …

… In this section, we demonstrate how ML research could in practice serve digital threat
knowledge-base curators, threat hunters, and cyber security analysts. We present an ML-based …

… team during a security breach, ie attack already happened, we use playbooks in threat
hunting to guiding security hunters in their proactive testing, ie an attack might be lurking. …

… threat hunting and compare it with four similar tools. It is found that Elastic Stack tool can
be effective in detecting the threats… Evidential classification and feature selection for cyber-threat …

… of cyber threat hunting, and our goal is to anaylyze these studies and find the modern
trend for cyber threat hunting. To … “Evidential classification and feature selection for cyber-threat …