Cyber-Hunting at Scale (CHASE)
Abstract
The Cyber-Hunting at Scale (CHASE) program developed data-driven tools for real-time cyber threat detection, characterization, and protection within enterprise-scale networks. U.S. computer networks are continually under attack, but at present there are few capabilities to efficiently extract and analyze the right data from the right device at the right time for DoD-scale information networks. For example, analysis of an in-memory exploit requires detailed data from a few devices, while analysis of a global botnet attack requires summary data from a great many devices. CHASE developed novel algorithms and analysis tools to dynamically collect data from across the network, actively hunt for advanced threats that evade routine security measures, and automatically disseminate protective measures that bolster the collective cyber defense posture.
Document Details
- Document Type
- Accomplishment
- Publication Date
- Oct 01, 2025
- Source ID
- 75c2caeebb90daa7ba6a215db501c7fa