Our Projects
Refer to our GitHub profile for more information on open-sourced projects by CuriOSity.
ProvCon
ProvCon is a provenance graph construction framework that generates cyberattack provenance graph and collected as a dataset. ProvCon uses cyberattack information from CTI reports to reproduce the cyberattack in a cyber range. The resulting data are extracted from the cyber range and are used to construct provenance graphs with annotations. The provenance graph dataset constructed using ProvCon is meant to be used by researchers and other downstream systems (e.g., threat hunting, root cause analysis) to have a deeper understanding of the indicators and behaviors of a cyberattack.
VulZoo
VulZoo is a large-scale vulnerability intelligence dataset that integrates various data sources of structural and non-structural data. It is designed to be used by security researchers, penetration testers, and security analysts to get a comprehensive view of vulnerabilities and their associated data.
KernJC
KernJC (Kernel JiaoChang /dʒaʊ tʃɑ:ŋ/) is a vulnerability reproduction tool for Linux kernel. The goal of KernJC is to construct reproducible environments for Linux kernel vulnerabilities, where the real vulnerable kernel version is compiled with the correct kernel configs to make the vulnerability available and triggerable.