{"id":"https://openalex.org/W7161793861","doi":"https://doi.org/10.48550/arxiv.2605.19899","title":"reconCTI: A Proactive Approach to Cyber-Threat Intelligence","display_name":"reconCTI: A Proactive Approach to Cyber-Threat Intelligence","publication_year":2026,"publication_date":"2026-05-19","ids":{"openalex":"https://openalex.org/W7161793861","doi":"https://doi.org/10.48550/arxiv.2605.19899"},"language":null,"primary_location":{"id":"doi:10.48550/arxiv.2605.19899","is_oa":true,"landing_page_url":"https://doi.org/10.48550/arxiv.2605.19899","pdf_url":null,"source":{"id":"https://openalex.org/S4306400194","display_name":"arXiv (Cornell University)","issn_l":null,"issn":null,"is_oa":true,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I205783295","host_organization_name":"Cornell University","host_organization_lineage":["https://openalex.org/I205783295"],"host_organization_lineage_names":[],"type":"repository"},"license":null,"license_id":null,"version":null,"is_accepted":false,"is_published":false,"raw_source_name":null,"raw_type":"article"},"type":"preprint","indexed_in":["datacite"],"open_access":{"is_oa":true,"oa_status":"green","oa_url":"https://doi.org/10.48550/arxiv.2605.19899","any_repository_has_fulltext":true},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5124011114","display_name":"Mohammed Mahir Rahman","orcid":null},"institutions":[],"countries":[],"is_corresponding":false,"raw_author_name":"Rahman, Mohammed Mahir","raw_affiliation_strings":[],"raw_orcid":null,"affiliations":[]},{"author_position":"middle","author":{"id":"https://openalex.org/A5123996147","display_name":"Shahzad Memon","orcid":null},"institutions":[],"countries":[],"is_corresponding":false,"raw_author_name":"Memon, Shahzad","raw_affiliation_strings":[],"raw_orcid":null,"affiliations":[]},{"author_position":"middle","author":{"id":"https://openalex.org/A5124045453","display_name":"Tauseef Ahmed","orcid":null},"institutions":[],"countries":[],"is_corresponding":false,"raw_author_name":"Ahmed, Tauseef","raw_affiliation_strings":[],"raw_orcid":null,"affiliations":[]},{"author_position":"last","author":{"id":"https://openalex.org/A5136570924","display_name":"Ameer Al-Nemrat","orcid":null},"institutions":[],"countries":[],"is_corresponding":false,"raw_author_name":"Al-Nemrat, Ameer","raw_affiliation_strings":[],"raw_orcid":null,"affiliations":[]}],"institutions":[],"countries_distinct_count":0,"institutions_distinct_count":4,"corresponding_author_ids":[],"corresponding_institution_ids":[],"apc_list":null,"apc_paid":null,"fwci":null,"has_fulltext":false,"cited_by_count":0,"citation_normalized_percentile":null,"cited_by_percentile_year":null,"biblio":{"volume":null,"issue":null,"first_page":null,"last_page":null},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T12519","display_name":"Cybercrime and Law Enforcement Studies","score":0.6726999878883362,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T12519","display_name":"Cybercrime and Law Enforcement Studies","score":0.6726999878883362,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T12572","display_name":"Intelligence, Security, War Strategy","score":0.04259999841451645,"subfield":{"id":"https://openalex.org/subfields/3320","display_name":"Political Science and International Relations"},"field":{"id":"https://openalex.org/fields/33","display_name":"Social Sciences"},"domain":{"id":"https://openalex.org/domains/2","display_name":"Social Sciences"}},{"id":"https://openalex.org/T10734","display_name":"Information and Cyber Security","score":0.03739999979734421,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/phishing","display_name":"Phishing","score":0.5507000088691711},{"id":"https://openalex.org/keywords/key","display_name":"Key (lock)","score":0.5052000284194946},{"id":"https://openalex.org/keywords/python","display_name":"Python (programming language)","score":0.48019999265670776},{"id":"https://openalex.org/keywords/the-internet","display_name":"The Internet","score":0.4034999907016754},{"id":"https://openalex.org/keywords/web-application","display_name":"Web application","score":0.3310000002384186},{"id":"https://openalex.org/keywords/information-sensitivity","display_name":"Information sensitivity","score":0.32339999079704285},{"id":"https://openalex.org/keywords/identity-theft","display_name":"Identity theft","score":0.3100000023841858}],"concepts":[{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.6625000238418579},{"id":"https://openalex.org/C83860907","wikidata":"https://www.wikidata.org/wiki/Q135005","display_name":"Phishing","level":3,"score":0.5507000088691711},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.5144000053405762},{"id":"https://openalex.org/C26517878","wikidata":"https://www.wikidata.org/wiki/Q228039","display_name":"Key (lock)","level":2,"score":0.5052000284194946},{"id":"https://openalex.org/C136764020","wikidata":"https://www.wikidata.org/wiki/Q466","display_name":"World Wide Web","level":1,"score":0.48660001158714294},{"id":"https://openalex.org/C519991488","wikidata":"https://www.wikidata.org/wiki/Q28865","display_name":"Python (programming language)","level":2,"score":0.48019999265670776},{"id":"https://openalex.org/C110875604","wikidata":"https://www.wikidata.org/wiki/Q75","display_name":"The Internet","level":2,"score":0.4034999907016754},{"id":"https://openalex.org/C2522767166","wikidata":"https://www.wikidata.org/wiki/Q2374463","display_name":"Data science","level":1,"score":0.36070001125335693},{"id":"https://openalex.org/C118643609","wikidata":"https://www.wikidata.org/wiki/Q189210","display_name":"Web application","level":2,"score":0.3310000002384186},{"id":"https://openalex.org/C137822555","wikidata":"https://www.wikidata.org/wiki/Q2587068","display_name":"Information sensitivity","level":2,"score":0.32339999079704285},{"id":"https://openalex.org/C522325796","wikidata":"https://www.wikidata.org/wiki/Q471880","display_name":"Identity theft","level":2,"score":0.3100000023841858},{"id":"https://openalex.org/C2779390178","wikidata":"https://www.wikidata.org/wiki/Q29137","display_name":"Cybercrime","level":3,"score":0.29580000042915344},{"id":"https://openalex.org/C108827166","wikidata":"https://www.wikidata.org/wiki/Q175975","display_name":"Internet privacy","level":1,"score":0.295199990272522},{"id":"https://openalex.org/C541664917","wikidata":"https://www.wikidata.org/wiki/Q14001","display_name":"Malware","level":2,"score":0.2946999967098236},{"id":"https://openalex.org/C527648132","wikidata":"https://www.wikidata.org/wiki/Q189900","display_name":"Information security","level":2,"score":0.29249998927116394},{"id":"https://openalex.org/C2780102126","wikidata":"https://www.wikidata.org/wiki/Q10928179","display_name":"Online and offline","level":2,"score":0.2879999876022339},{"id":"https://openalex.org/C2778355321","wikidata":"https://www.wikidata.org/wiki/Q17079427","display_name":"Identity (music)","level":2,"score":0.2754000127315521},{"id":"https://openalex.org/C544335954","wikidata":"https://www.wikidata.org/wiki/Q2553348","display_name":"Web intelligence","level":4,"score":0.25429999828338623}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.48550/arxiv.2605.19899","is_oa":true,"landing_page_url":"https://doi.org/10.48550/arxiv.2605.19899","pdf_url":null,"source":{"id":"https://openalex.org/S4306400194","display_name":"arXiv (Cornell University)","issn_l":null,"issn":null,"is_oa":true,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I205783295","host_organization_name":"Cornell University","host_organization_lineage":["https://openalex.org/I205783295"],"host_organization_lineage_names":[],"type":"repository"},"license":null,"license_id":null,"version":null,"is_accepted":false,"is_published":null,"raw_source_name":null,"raw_type":"article"}],"best_oa_location":{"id":"doi:10.48550/arxiv.2605.19899","is_oa":true,"landing_page_url":"https://doi.org/10.48550/arxiv.2605.19899","pdf_url":null,"source":{"id":"https://openalex.org/S4306400194","display_name":"arXiv (Cornell University)","issn_l":null,"issn":null,"is_oa":true,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I205783295","host_organization_name":"Cornell University","host_organization_lineage":["https://openalex.org/I205783295"],"host_organization_lineage_names":[],"type":"repository"},"license":null,"license_id":null,"version":null,"is_accepted":false,"is_published":false,"raw_source_name":null,"raw_type":"article"},"sustainable_development_goals":[{"display_name":"Peace, Justice and strong institutions","id":"https://metadata.un.org/sdg/16","score":0.684865415096283}],"awards":[],"funders":[],"has_content":{"grobid_xml":false,"pdf":false},"content_urls":null,"referenced_works_count":0,"referenced_works":[],"related_works":[],"abstract_inverted_index":{"The":[0,89,130],"rapid":[1],"advancement":[2],"of":[3],"information":[4,48],"technology":[5],"has":[6,27],"introduced":[7],"a":[8,51,80,135],"noticeable":[9],"shift":[10],"from":[11],"traditional":[12],"offline":[13],"practices":[14],"to":[15,31,63,73,93,110,147],"more":[16],"efficient":[17],"and":[18,40,66,103,119,152,158],"interconnected":[19],"online":[20],"environments.":[21],"This":[22],"transition,":[23],"while":[24],"offering":[25],"convenience,":[26],"also":[28,139],"increased":[29],"exposure":[30],"various":[32],"cyber":[33],"threats":[34],"such":[35],"as":[36,47],"identity":[37],"theft,":[38],"impersonation,":[39],"phishing":[41],"scams.":[42],"Reconnaissance,":[43],"or":[44],"briefly":[45],"known":[46],"gathering,":[49],"is":[50,91,145],"key":[52],"stage":[53],"for":[54,86,95],"threat":[55,136],"actors,":[56],"often":[57],"relying":[58],"on":[59,69],"open-source":[60],"intelligence":[61],"(OSINT)":[62],"collect":[64],"sensitive":[65,96],"extensive":[67],"data":[68,97],"targets.":[70],"In":[71],"response":[72],"this":[74,76],"challenge,":[75],"study":[77],"introduces":[78],"reconCTI,":[79],"command-line":[81],"tool":[82,90],"built":[83],"using":[84],"Python":[85],"Linux":[87],"systems.":[88],"designed":[92],"search":[94],"leaks":[98],"across":[99],"both":[100,149],"surface":[101],"web":[102,105],"dark":[104],"platforms.":[106],"It":[107],"allows":[108],"users":[109],"input":[111],"specific":[112],"keywords,":[113],"scan":[114],"multiple":[115],"sites":[116],"at":[117],"once,":[118],"then":[120],"assess":[121],"the":[122,126],"findings":[123],"by":[124],"referencing":[125],"MITRE":[127],"ATT&amp;CK":[128],"framework.":[129],"results":[131],"are":[132],"compiled":[133],"into":[134],"report":[137],"that":[138],"includes":[140],"possible":[141],"mitigation":[142],"strategies.":[143],"reconCTI":[144],"intended":[146],"support":[148],"cybersecurity":[150],"professionals":[151],"individuals":[153],"in":[154],"identifying":[155],"risks":[156],"early":[157],"taking":[159],"appropriate":[160],"action.":[161]},"counts_by_year":[],"updated_date":"2026-06-11T09:08:48.828518","created_date":"2026-05-21T00:00:00"}