Published June 3, 2026
| Version 1.01
Technical note
Open
An Automated Forensic Pipeline Using STIX 2.1 and OSINT for Neutralization of Transnational Pig Butchering and Business Email Compromise Fraud Infrastructure
Description
This technical report presents a scalable, fully automated forensic neutralization pipeline designed to identify, enrich, and systematically dismantle transnational cyber-fraud infrastructure, specifically Pig Butchering and BEC campaigns. The framework integrates Bash-based discovery with Python-driven forensic enrichment, utilizing STIX 2.1 standardization and MITRE ATT&CK mapping. As of June 2, 2026, the pipeline has processed over 1,800 malicious domains. This research is conducted independently and emphasizes cryptographic audit logging, legal compliance (CFAA, GDPR, CCPA), and ethical targeting.
Files
Automated-Cyber-Threat-Intelligence-and-Takedown-Methodology-for-Transnational-Fraud-Infrastructure.pdf
Files
(432.2 kB)
| Name | Size | Download all |
|---|---|---|
|
md5:bedb71891c7496eb788c0c0e308ae157
|
315.7 kB | Preview Download |
|
md5:e44866d11ad357578f53c407a738e34f
|
116.6 kB | Preview Download |
Additional details
Related works
- Is supplement to
- Technical note: 10.17605/OSF.IO/QM3VC (DOI)
- Technical note: 10.17605/OSF.IO/4A2KG (DOI)
- Is supplemented by
- Dataset: 10.6084/m9.figshare.c.8520516 (DOI)
- Dataset: 10.6084/m9.figshare.32592171 (DOI)
Dates
- Submitted
-
2026-06-03Date of report submission and publication.