How to Have a Cybersecurity Graph Database on Your PC

GraphKer represents every public record of CVE, CWE, CAPEC and CPE provided by MITRE and NIST in a connected graph using Neo4j.Let’s talk about GraphKer; a combination of the words Graph and Hacker. You see where it is going. GraphKer is a free and open-source tool, providing a detailed and updated cybersecurity graph database using Neo4j.Nowadays, when everything is translated into data ...

Read more...

-- Adamantios - Marios Berzovitis
Tue, 26 Oct 2021 14:54:32 GMT

Interesting and very timely! I had a similar thought about what the graph model would look like. I'd be interested in understanding why the graph was modeled in certain ways (e.g., CVE Assigner is a property of CVE and not its own node). I know going through the graph modeling class (1-day) sometimes the modeling is a bit different (partially for optimization purposes) than I would typically expect (e.g., years and months are sometimes nodes instead of properties).