Skip to main content

Advanced Search

Projected result for your current search: 0

Search Operators:

You can use operators in your search query to narrow down your results even more. Click on the search operator to see an explanation of how it works.
Finds documents with exactly this word group, in exactly this word order and spelling (e.g. "employer branding").
Finds documents with both search terms (e.g. sales AND bonus).
Finds documents with one or the other search term (e.g. porsche OR volkswagen).
Finds documents with all search terms. Blank space is understood as AND (e.g. man robot production).
Finds documents with no appearance of the word behind NOT (e.g. ford NOT "harrison ford").
Finds documents where the search term is mentioned at least "n" times."n" may be any number (e.g. COUNT(gear)>8).
Finds documents with both search terms in any word order, permitting "n" words as a maximum distance between them. Best choose between 15 and 30 (e.g. NEAR(recruit, professionals, 20)).
Finds documents with the search term in word versions or composites. The asterisk * marks whether you wish them BEFORE, BEHIND, or BEFORE and BEHIND the search term (e.g. lightweight*, *lightweight, *lightweight*).
Finds documents with the search term in different spellings. "?" allows only one character (e.g. organi?ation).
Special characters are understood as AND (e.g. Miller Bros. & Sons).

Semantic Search

powered by (Link opens in a new window)
loading …
Log in
Top

From Regex to Transformers: A Hybrid Framework for Cyber Threat Indicator Extraction from Unstructured Text

  • 2026
  • OriginalPaper
  • Chapter
Published in:
Authors
Paul Jideani
Aurona Gerber
Published in
Advancing Innovative Cybersecurity Solutions and Approaches to Protect Digital Ecosystems
Publisher
Springer Nature Switzerland

Activate our intelligent search to find suitable subject content or patents.

search-config
loading …

Abstract

This chapter delves into the critical challenge of extracting Indicators of Compromise (IOCs) from unstructured cyber threat intelligence (CTI) reports, which is currently a manual and time-consuming process. The authors present a hybrid framework that integrates traditional rule-based methods with a fine-tuned transformer model, specifically DistilBERT, to automate and enhance the extraction of eight IOC categories. The methodology involves dataset acquisition and preprocessing, baseline IOC extraction using regex and spaCy NER, and advanced model training and evaluation. The results show a significant improvement in recall and accuracy over baseline approaches, with the transformer model achieving over 98% precision and recall. The chapter also discusses the deployment of the model through a RESTful API and an interactive Streamlit interface, making it practical for real-world applications. The key takeaway is the potential of NLP and transformer models to revolutionize threat intelligence workflows by reducing manual analysis time and improving the accuracy of IOC extraction.
AI Generated

This summary of the content was generated with the help of AI.

Already a customer? Then log in here to gain access.

Customer login

Dont have a licence yet? Then find out more about our products and how to get one now:

Springer Professional "Business + Economics & Engineering + Technology"

Online-Abonnement

Springer Professional "Business + Economics & Engineering + Technology" gives you access to:

  • more than 130.000 books
  • more than 540 journals

from the following subject areas:

  • Automotive
  • Construction + Real Estate
  • Business IT + Informatics
  • Electrical Engineering + Electronics
  • Energy + Sustainability
  • Finance + Banking
  • Management + Leadership
  • Marketing + Sales
  • Mechanical Engineering + Materials
  • Surfaces + Materials Technology
  • Insurance + Risk


Secure your knowledge advantage now!

inform now

Springer Professional "Engineering + Technology"

Online-Abonnement

Springer Professional "Engineering + Technology" gives you access to:

  • more than 75.000 books
  • more than 390 journals

from the following specialised fileds:

  • Automotive
  • Business IT + Informatics
  • Construction + Real Estate
  • Electrical Engineering + Electronics
  • Energy + Sustainability
  • Mechanical Engineering + Materials
  • Surfaces + Materials Technology





 

Secure your knowledge advantage now!

inform now

Springer Professional "Business + Economics"

Online-Abonnement

Springer Professional "Business + Economics" gives you access to:

  • more than 100.000 books
  • more than 340 journals

from the following specialised fileds:

  • Construction + Real Estate
  • Business IT + Informatics
  • Finance + Banking
  • Management + Leadership
  • Marketing + Sales
  • Insurance + Risk



Secure your knowledge advantage now!

inform now

For explorers: Get to know our platforms better with a free registration.

Register for free
previous chapter AI-Blockchain Synergy for Next-Generation Cybersecurity. Adaptive, Ethical, and Efficient Architectures
next chapter Towards Facial Expression Analysis for Enhanced Threat Detection in Surveillance
Title
From Regex to Transformers: A Hybrid Framework for Cyber Threat Indicator Extraction from Unstructured Text
Authors
Paul Jideani
Aurona Gerber
Copyright Year
2026
Book
Advancing Innovative Cybersecurity Solutions and Approaches to Protect Digital Ecosystems

Print ISBN: 978-3-032-13074-7

Electronic ISBN: 978-3-032-13075-4

Copyright Year: 2026

DOI
https://doi.org/10.1007/978-3-032-13075-4_3
This content is only visible if you are logged in and have the appropriate permissions.

Premium Partner

    Image Credits
    Neuer Inhalt/© ITandMEDIA, Nagarro GmbH/© Nagarro GmbH, AvePoint Deutschland GmbH/© AvePoint Deutschland GmbH, AFB Gemeinnützige GmbH/© AFB Gemeinnützige GmbH, USU GmbH/© USU GmbH, Ferrari electronic AG/© Ferrari electronic AG