This paper presents the current state of the art on attack and defense modeling approaches
that are based on directed acyclic graphs (DAGs). DAGs allow for a hierarchical …

Attack graphs are a powerful tool for security risk assessment by analysing network
vulnerabilities and the paths attackers can use to compromise network resources. The …

In this paper we introduce pwnPr3d, a probabilistic threat modeling approach for automatic
attack graph generation based on network modeling. The aim is to provide stakeholders in …

Through a built-in security analysis feature based on metadata, this article provides a novel
framework that starts with a scenario input and produces a collection of visualizations based …

Attack–defense trees are a novel methodology for graphical security modelling and
assessment. They extend the well-known formalism of attack trees by allowing nodes that …

Attack simulations may be used to assess the cyber security of systems. In such simulations,
the steps taken by an attacker in order to compromise sensitive system assets are traced …

Attack tree (AT) is one of the widely used non‐state‐space models for security analysis. The
basic formalism of AT does not take into account defense mechanisms. Defense trees (DTs) …

Attack models can be used to assess network security. Purely graph based attack
representation models (eg, attack graphs) have a state-space explosion problem. Purely …

This paper provides a survey of prediction, and forecasting methods used in cyber security.
Four main tasks are discussed first, attack projection and intention recognition, in which …

Attack trees are a well established and commonly used framework for security modeling.
They provide a readable and structured representation of possible attacks against a system …