SAGA Research Group
Building reproducible cybersecurity datasets and frameworks for evaluating advanced threat detection, attack simulation, and AI-driven malware analysis.
About the Team
The SAGA Research Group focuses on advancing cybersecurity research through reproducible synthetic data generation and intelligent threat modeling. Our work bridges academic rigor and practical defense applications, enabling researchers to develop and evaluate APT detection and malware analysis systems.
Key Projects
SAGA Dataset
Synthetic audit logs for configurable APT campaigns following Mandiant’s attack lifecycle.
SFM Framework
Sandbox evasion and malware family classification framework leveraging function-level embeddings.
AI Threat Modeling
Applying diffusion and transformer architectures for advanced malware classification.
ATT&CK Coverage Visualizer
Interactive coverage analysis aligning APT campaigns with MITRE ATT&CK and Mandiant phases.
Contact
For collaborations, dataset access, or academic inquiries: