科研世界中的节点

quote
“Talk is cheap. Show me the code.”
— Linus Torvalds
motto

🔥 News

  • 2026.01.04: 🎉🎉 Accepted paper for presentation at the USENIX Security 2026!

  • 2025.04.05: 🎉🎉 Accepted paper for presentation at the SIGIR 2025!

📝 Publications

Enhanced Security Profiles framework
SIGIR 2025 Cyber Threat Reports Knowledge Extraction Security Profiles
A Knowledge Extraction Framework on Cyber Threat Reports with Enhanced Security Profiles
Yongxin Cai · Jing Qiu · Fan Zhang · Qiang Li · Lei Chen
This work presents a unified framework for extracting structured threat knowledge from unstructured cyber threat reports and constructing enhanced security profiles to support downstream analysis, correlation, and automated defense.
GitHub PDF Updated: 2026-01-04
  • Fine-grained entity and relation extraction from CTI narratives
  • Security-profile construction across multiple threat dimensions
  • Knowledge reuse for detection and defense automation
SIGMERGE pipeline
USENIX Security 2026 Cyber Threat Reports Sigma Rule Generation
From Texts to Rules: Generating Sigma Rules with Large Language Models from Cyber Threat Reports
Yongxin Cai · Jing Qiu · Qingming Li · Du Cheng · Lei Chen
An end-to-end framework that converts cyber threat reports into executable Sigma detection rules by bridging semantic gaps across extraction, attack description generation, and rule synthesis.
GitHub PDF Updated: 2026-01-04
  • Multi-stage semantic descent from CTI to Sigma
  • Parameter-cached RAG for robust rule generation
  • Executable command–rule alignment