GoodFATR: A Platform for Automated Threat Report Collection and IOC Extraction. (arXiv:2208.00042v1 [cs.CR])

To adapt to a constantly evolving landscape of cyber threats, organizations
actively need to collect Indicators of Compromise (IOCs), i.e., forensic
artifacts that signal that a host or network might have been compromised. IOCs
can be collected through open-source and commercial structured IOC feeds. But,
they can also be extracted from a myriad of unstructured threat reports written
in natural language and distributed using a wide array of sources such as blogs
and social media. This work presents GoodFATR an …

automated collection ioc platform report threat threat report