Metrics
360 File views/ downloads
94 Record Views
Journal article
Graphical Representation of UWF-ZeekData22 Using Memgraph
Electronics, Vol.13(6), p.1015
03/01/2024
Web of Science ID: WOS:001192093600001
Abstract
This work uses Memgraph, an open-source graph data platform, to analyze, visualize, and apply graph machine learning techniques to detect cybersecurity attack tactics in a newly created Zeek Conn log dataset, UWF-ZeekData22, generated in The University of West Florida’s cyber simulation environment. The dataset is transformed to a representative graph, and the graph’s properties studied in this paper are PageRank, degree, bridge, weakly connected components, node and edge cardinality, and path length. Node classification is used to predict the connection between IP addresses and ports as a form of attack tactic or non-attack tactic in the MITRE framework, implemented using Memgraph’s graph neural networks. Multi-classification is performed using the attack tactics, and three different graph neural network models are compared. Using only three graph features, in-degree, out-degree, and PageRank, Memgraph’s GATJK model performs the best, with source node classification accuracy of 98.51% and destination node classification accuracy of 97.85%.
Files and links (2)
Related links
Details
- Title
- Graphical Representation of UWF-ZeekData22 Using Memgraph
- Publication Details
- Electronics, Vol.13(6), p.1015
- Resource Type
- Journal article
- Publisher
- MDPI AG
- Copyright
- Copyright: © 2024 by the authors. Licensee MDPI, Basel, Switzerland.
- Identifiers
- WOS:001192093600001; 99380518997306600
- Academic Unit
- Mathematics and Statistics; Computer Science; Hal Marcus College of Science and Engineering
- Language
- English