Goal: To create a knowledge graph of cybersecurity artifacts mined from Zenodo
Jelena's group has been working on collecting resources/artifacts that are important for cybersecurity. These resources are papers, datasets or software that are related to a cybersecurity topic. Jelena's student has been compiling the table she sent in a manual manner. We would like to speed up the process by identifying which resources in Zenodo are relevant to cybersecurity, their description and how do they relate together and build a knowledge graph allowing Jelena’s group to efficiently search for related artifacts.
To collect data from Zenodo, we use the Zenodo API. The file scrape.py sends GET requests to the Zenodo API and stores the results as specified.
Required command-line arguments:
python3 src/scrape.py -h
usage: scrape.py [-h] -k KEYWORD [KEYWORD ...] -s SIZE [-db]
optional arguments:
-h, --help show this help message and exit
-k KEYWORD [KEYWORD ...], --keyword KEYWORD [KEYWORD ...]
keyword(s) to be searched in Zenodo
-s SIZE, --size SIZE number of query results to be requested from Zenodo
-db, --db (optional) stores collected data to MongoDB in the AWS
EC2 instanceExecution Examples:
cd <PROJECT_ROOT>
# query with a single keyword, store results in JSON file
python3 src/scrape.py -k cybersecurity -s 100
# query with multiple keywords, store results in JSON file
python3 src/scrape.py -k cybersecurity vulnerability -s 100
# store results in MongoDB in the AWS EC2 instance
python3 src/scrape.py -k cybersecurity -s 100 -dbExpected Result: JSON document containing data for each artifact.
A sample of an artifact collected from Zenodo can be found in results/sample_artifact.json
When mining artifacts, the following information is saved:
- id: Zenodo URL/DOI.
- name: Title of the artifact
- type: whether it's a dataset, code or paper.
- abstract: abstract of the artifact
- author: Authors
- keywords: keywords used for describing the artifact.
- relatedTo: This will not be used for now, will be used to relate an artifact to a topic.
This is the schema which will be used to represent the data. Once we scrape some artifacts, then we can run topic modeling/clustering analysis to relate them by keyword.
The directory filterby_keywords/filter_using_TFIDF works to give a relevance score for each artifact in the database, in order to filtering unrelated artifacts. Please see notebook Filter_doc.ipynb for full documentation.
Both the jupyter notebook Filter_using_TFIDF.ipynb and script python filter_TF-IDF.py do the scoring, but the notebook contains further a section for generating sample results.
The script's execution format is python filter_TF-IDF.py.
The object and relevance scores will be in file filterby_keywords/final_filter_TFIDF_result.json, in the form of {'objectID':'relevance_score'}.
Connect to the AWS EC2 Instance: ssh -i <PATH_TO_PEM_FILE> ubuntu@54.67.82.172
- To install and secure MongoDB in EC2: Medium