CDGM: Controllable Dataset Generation Method for Cybersecurity

Yushun Xie; Haiyan Wang; Runnan Tan; Xiangyu Song; Zhaoquan Gu

doi:10.1007/978-981-96-0850-8_16

CDGM: Controllable Dataset Generation Method for Cybersecurity

Yushun Xie
, Haiyan Wang
, Runnan Tan
, Xiangyu Song
, Zhaoquan Gu^*

^*Corresponding author for this work

University of Electronic Science and Technology of China
Peng Cheng Laboratory
Guangzhou University
School of Computer Science and Technology, Harbin Institute of Technology

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

1 Scopus citations

Abstract

Cyberattacks can lead to data breaches, service disruptions, and economic losses, and may even threaten national security and social stability. Therefore researchers have proposed various methods based on public datasets to improve the intelligence and automation of cybersecurity defense techniques. However, these public datasets usually have limited coverage of the types of cyberattacks, resulting in the proposed methods being ineffective against attacks not included in the dataset. Meanwhile, cybersecurity defenders often need to study cyberattack scenarios involving specific assets that are usually not represented in public datasets. To address these challenges, we propose a new approach to cybersecurity controlled dataset generation. Our method can reproduce any cyberattack using our four-role architecture, generating customized private attack data that includes specific assets, this capability satisfies the needs of researchers. By integrating the private attack data with a cybersecurity knowledge base derived from open-source datasets, we construct a comprehensive cybersecurity dataset. Extensive experiments demonstrate that the cybersecurity dataset generated by our method is suitable for various common cybersecurity tasks, such as threat hunting, alert analysis, and knowledge reasoning.

Original language	English
Title of host publication	Advanced Data Mining and Applications - 20th International Conference, ADMA 2024, Proceedings
Editors	Quan Z. Sheng, Xuyun Zhang, Jia Wu, Congbo Ma, Gill Dobbie, Jing Jiang, Wei Emma Zhang, Yannis Manolopoulos, Wathiq Mansoor
Publisher	Springer Science and Business Media Deutschland GmbH
Pages	238-253
Number of pages	16
ISBN (Print)	9789819608492
DOIs	https://doi.org/10.1007/978-981-96-0850-8_16
State	Published - 2025
Externally published	Yes
Event	20th International Conference on Advanced Data Mining Applications, ADMA 2024 - Sydney, Australia Duration: 3 Dec 2024 → 5 Dec 2024

Publication series

Name	Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)
Volume	15392 LNAI
ISSN (Print)	0302-9743
ISSN (Electronic)	1611-3349

Conference

Conference	20th International Conference on Advanced Data Mining Applications, ADMA 2024
Country/Territory	Australia
City	Sydney
Period	3/12/24 → 5/12/24

Keywords

Cyberattack
Cybersecurity Dataset
Data generate

Access to Document

10.1007/978-981-96-0850-8_16

Cite this

Xie, Y., Wang, H., Tan, R., Song, X., & Gu, Z. (2025). CDGM: Controllable Dataset Generation Method for Cybersecurity. In Q. Z. Sheng, X. Zhang, J. Wu, C. Ma, G. Dobbie, J. Jiang, W. E. Zhang, Y. Manolopoulos, & W. Mansoor (Eds.), Advanced Data Mining and Applications - 20th International Conference, ADMA 2024, Proceedings (pp. 238-253). (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics) ; Vol. 15392 LNAI). Springer Science and Business Media Deutschland GmbH. https://doi.org/10.1007/978-981-96-0850-8_16

Xie, Yushun ; Wang, Haiyan ; Tan, Runnan et al. / CDGM : Controllable Dataset Generation Method for Cybersecurity. Advanced Data Mining and Applications - 20th International Conference, ADMA 2024, Proceedings. editor / Quan Z. Sheng ; Xuyun Zhang ; Jia Wu ; Congbo Ma ; Gill Dobbie ; Jing Jiang ; Wei Emma Zhang ; Yannis Manolopoulos ; Wathiq Mansoor. Springer Science and Business Media Deutschland GmbH, 2025. pp. 238-253 (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics) ).

@inproceedings{d58b44b4a38c4f00b41af280f0a49013,

title = "CDGM: Controllable Dataset Generation Method for Cybersecurity",

abstract = "Cyberattacks can lead to data breaches, service disruptions, and economic losses, and may even threaten national security and social stability. Therefore researchers have proposed various methods based on public datasets to improve the intelligence and automation of cybersecurity defense techniques. However, these public datasets usually have limited coverage of the types of cyberattacks, resulting in the proposed methods being ineffective against attacks not included in the dataset. Meanwhile, cybersecurity defenders often need to study cyberattack scenarios involving specific assets that are usually not represented in public datasets. To address these challenges, we propose a new approach to cybersecurity controlled dataset generation. Our method can reproduce any cyberattack using our four-role architecture, generating customized private attack data that includes specific assets, this capability satisfies the needs of researchers. By integrating the private attack data with a cybersecurity knowledge base derived from open-source datasets, we construct a comprehensive cybersecurity dataset. Extensive experiments demonstrate that the cybersecurity dataset generated by our method is suitable for various common cybersecurity tasks, such as threat hunting, alert analysis, and knowledge reasoning.",

keywords = "Cyberattack, Cybersecurity Dataset, Data generate",

author = "Yushun Xie and Haiyan Wang and Runnan Tan and Xiangyu Song and Zhaoquan Gu",

note = "Publisher Copyright: {\textcopyright} The Author(s), under exclusive license to Springer Nature Singapore Pte Ltd. 2025.; 20th International Conference on Advanced Data Mining Applications, ADMA 2024 ; Conference date: 03-12-2024 Through 05-12-2024",

year = "2025",

doi = "10.1007/978-981-96-0850-8\_16",

language = "英语",

isbn = "9789819608492",

series = "Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics) ",

publisher = "Springer Science and Business Media Deutschland GmbH",

pages = "238--253",

editor = "Sheng, \{Quan Z.\} and Xuyun Zhang and Jia Wu and Congbo Ma and Gill Dobbie and Jing Jiang and Zhang, \{Wei Emma\} and Yannis Manolopoulos and Wathiq Mansoor",

booktitle = "Advanced Data Mining and Applications - 20th International Conference, ADMA 2024, Proceedings",

address = "德国",

}

Xie, Y, Wang, H, Tan, R, Song, X & Gu, Z 2025, CDGM: Controllable Dataset Generation Method for Cybersecurity. in QZ Sheng, X Zhang, J Wu, C Ma, G Dobbie, J Jiang, WE Zhang, Y Manolopoulos & W Mansoor (eds), Advanced Data Mining and Applications - 20th International Conference, ADMA 2024, Proceedings. Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics) , vol. 15392 LNAI, Springer Science and Business Media Deutschland GmbH, pp. 238-253, 20th International Conference on Advanced Data Mining Applications, ADMA 2024, Sydney, Australia, 3/12/24. https://doi.org/10.1007/978-981-96-0850-8_16

CDGM: Controllable Dataset Generation Method for Cybersecurity. / Xie, Yushun; Wang, Haiyan; Tan, Runnan et al.
Advanced Data Mining and Applications - 20th International Conference, ADMA 2024, Proceedings. ed. / Quan Z. Sheng; Xuyun Zhang; Jia Wu; Congbo Ma; Gill Dobbie; Jing Jiang; Wei Emma Zhang; Yannis Manolopoulos; Wathiq Mansoor. Springer Science and Business Media Deutschland GmbH, 2025. p. 238-253 (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics) ; Vol. 15392 LNAI).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

TY - GEN

T1 - CDGM

T2 - 20th International Conference on Advanced Data Mining Applications, ADMA 2024

AU - Xie, Yushun

AU - Wang, Haiyan

AU - Tan, Runnan

AU - Song, Xiangyu

AU - Gu, Zhaoquan

N1 - Publisher Copyright: © The Author(s), under exclusive license to Springer Nature Singapore Pte Ltd. 2025.

PY - 2025

Y1 - 2025

N2 - Cyberattacks can lead to data breaches, service disruptions, and economic losses, and may even threaten national security and social stability. Therefore researchers have proposed various methods based on public datasets to improve the intelligence and automation of cybersecurity defense techniques. However, these public datasets usually have limited coverage of the types of cyberattacks, resulting in the proposed methods being ineffective against attacks not included in the dataset. Meanwhile, cybersecurity defenders often need to study cyberattack scenarios involving specific assets that are usually not represented in public datasets. To address these challenges, we propose a new approach to cybersecurity controlled dataset generation. Our method can reproduce any cyberattack using our four-role architecture, generating customized private attack data that includes specific assets, this capability satisfies the needs of researchers. By integrating the private attack data with a cybersecurity knowledge base derived from open-source datasets, we construct a comprehensive cybersecurity dataset. Extensive experiments demonstrate that the cybersecurity dataset generated by our method is suitable for various common cybersecurity tasks, such as threat hunting, alert analysis, and knowledge reasoning.

AB - Cyberattacks can lead to data breaches, service disruptions, and economic losses, and may even threaten national security and social stability. Therefore researchers have proposed various methods based on public datasets to improve the intelligence and automation of cybersecurity defense techniques. However, these public datasets usually have limited coverage of the types of cyberattacks, resulting in the proposed methods being ineffective against attacks not included in the dataset. Meanwhile, cybersecurity defenders often need to study cyberattack scenarios involving specific assets that are usually not represented in public datasets. To address these challenges, we propose a new approach to cybersecurity controlled dataset generation. Our method can reproduce any cyberattack using our four-role architecture, generating customized private attack data that includes specific assets, this capability satisfies the needs of researchers. By integrating the private attack data with a cybersecurity knowledge base derived from open-source datasets, we construct a comprehensive cybersecurity dataset. Extensive experiments demonstrate that the cybersecurity dataset generated by our method is suitable for various common cybersecurity tasks, such as threat hunting, alert analysis, and knowledge reasoning.

KW - Cyberattack

KW - Cybersecurity Dataset

KW - Data generate

UR - https://www.scopus.com/pages/publications/85214375335

U2 - 10.1007/978-981-96-0850-8_16

DO - 10.1007/978-981-96-0850-8_16

M3 - 会议稿件

AN - SCOPUS:85214375335

SN - 9789819608492

T3 - Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)

SP - 238

EP - 253

BT - Advanced Data Mining and Applications - 20th International Conference, ADMA 2024, Proceedings

A2 - Sheng, Quan Z.

A2 - Zhang, Xuyun

A2 - Wu, Jia

A2 - Ma, Congbo

A2 - Dobbie, Gill

A2 - Jiang, Jing

A2 - Zhang, Wei Emma

A2 - Manolopoulos, Yannis

A2 - Mansoor, Wathiq

PB - Springer Science and Business Media Deutschland GmbH

Y2 - 3 December 2024 through 5 December 2024

ER -

Xie Y, Wang H, Tan R, Song X, Gu Z. CDGM: Controllable Dataset Generation Method for Cybersecurity. In Sheng QZ, Zhang X, Wu J, Ma C, Dobbie G, Jiang J, Zhang WE, Manolopoulos Y, Mansoor W, editors, Advanced Data Mining and Applications - 20th International Conference, ADMA 2024, Proceedings. Springer Science and Business Media Deutschland GmbH. 2025. p. 238-253. (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics) ). doi: 10.1007/978-981-96-0850-8_16