File size: 4,036 Bytes
a143872 13548c0 60fcb85 13548c0 a143872 13548c0 a143872 13548c0 62b86ec 13548c0 | 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 | ---
license: mit
language:
- en
tags:
- cybersecurity
- vulnerability
- mitre-attck
- text-classification
- fine-tuned
base_model: ehsanaghaei/SecureBERT
---
# SecureBERT β MITRE ATT&CK Classifier
[](https://theses.fr/s371241)
[](https://opensource.org/licenses/MIT)
[](https://doi.org/10.5281/zenodo.16936476)
[](https://zenodo.org/records/17368476)
[](https://github.com/terranovafr/CVE-LMTune)
<div align="center">
<img src="https://upload.wikimedia.org/wikipedia/commons/thumb/5/5b/Logo_Universit%C3%A9_de_Lorraine.svg/1280px-Logo_Universit%C3%A9_de_Lorraine.svg.png" alt="Universite de Lorraine" height="50"/>
<img src="https://upload.wikimedia.org/wikipedia/commons/thumb/9/95/Inr_logo_rouge.svg/1280px-Inr_logo_rouge.svg.png" alt="INRIA" height="50"/>
<img src="https://upload.wikimedia.org/wikipedia/fr/6/6e/Logo_loria_abrege_couleur.png" alt="LORIA" height="70"/>
<img src="https://www.pepr-cybersecurite.fr/wp-content/uploads/2023/09/pep-cybersecurite-550x250-1.png" alt="SuperViZ" height="70"/>
</div>
<br>
Part of the **CVE-LMTune** model suite β language models fine-tuned for multi-taxonomy vulnerability classification.
## Paper
> Franco Terranova, Sana Rekbi, Abdelkader Lahmadi, Isabelle Chrisment.
> *Multi-Taxonomy Vulnerability Classification with Hierarchically Finetuned Language Models.*
> The 23rd Conference on Detection of Intrusions and Malware & Vulnerability Assessment **(DIMVA '26)**.
## Task
**MITRE ATT&CK technique classification from CVE descriptions**
## Performance
See paper for details
## Model Structure
flat β standard `AutoModelForSequenceClassification`
## Quick Start
```python
from transformers import AutoTokenizer, AutoModelForSequenceClassification
import torch
tokenizer = AutoTokenizer.from_pretrained("Sana9/securebert-mitre-attack")
model = AutoModelForSequenceClassification.from_pretrained("Sana9/securebert-mitre-attack")
model.eval()
text = "Buffer overflow vulnerability in OpenSSL allows remote attackers to execute arbitrary code."
inputs = tokenizer(text, return_tensors="pt", truncation=True, max_length=512)
with torch.no_grad():
logits = model(**inputs).logits
probs = torch.sigmoid(logits) # multi-label β sigmoid
```
> **Note for hierarchical models:** This repo contains multiple sub-folders (master + slave models).
> Load each sub-folder separately using `from_pretrained("Sana9/securebert-mitre-attack/master")` etc.
## Citation
```bibtex
@inproceedings{terranova2026cvelmtune,
title = {Multi-Taxonomy Vulnerability Classification with Hierarchically Finetuned Language Models},
author = {Terranova, Franco and Rekbi, Sana and Lahmadi, Abdelkader and Chrisment, Isabelle},
booktitle = {Proceedings of DIMVA '26},
year = {2026}
}
```
## Related Resources
- π€ [Full model suite on Hugging Face](https://huggingface.co/Sana9)
- π» [CVE-LMTune β Training code (GitHub)](https://github.com/terranovafr/CVE-LMTune)
- π¦ [Zenodo β Data repository](https://doi.org/10.5281/zenodo.16936476)
- π¦ [Zenodo β Code repository](https://zenodo.org/records/17368476)
## Disclaimers
- This product uses the NVD API but is not endorsed or certified by the NVD.
- This project relies on data publicly available from the CWE, CAPEC, and MITRE ATT&CK projects.
- This work has been partially supported by the French National Research Agency under the France 2030 label (Superviz ANR-22-PECY-0008). The views reflected herein do not necessarily reflect the opinion of the French government.
|