Skip to content
/ MalReG Public

The repository contains scripts and the annotated dataset used in our paper "MalReG: Detecting and Analyzing Malicious Retweeter Groups" (accepted at CoDS-COMAD 2019).

0 stars 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

sonu-gupta/MalReG

BranchesTags

Repository files navigation

Detecting and Analyzing Malicious Retweeter Groups

Sonu Gupta, Ponnurangam Kumaraguru, Tanmoy Chakraborty

The repository contains feature extraction scripts and the annotated dataset used in our paper "MalReG: Detecting and Analyzing Malicious Retweeter Groups" (accepted at CoDS-COMAD 2019).

Abstract

Given a retweeter network in Twitter for any event, how can we detect the group of users that collude to retweet together maliciously? A large number of retweets of a post often indicates the virality of the post. It also helps increase the visibility and volume of hashtags, topics or URLs, to promote the event associated with it. Our primary hunch is that there is synchronization or indicative pattern in the behavior of such users. In this paper, we propose (i) MalReG, a novel algorithm to detect retweeter groups, and (ii) a set of 23 group-based features (entropy-based and temporal-based) to train a supervised model to identify malicious retweeter groups (MRG). We present experiments on three real-world datasets with more than 10 million retweets crawled from Twitter. MalReG identifies 1, 017 retweeter groups present in our dataset. We train a supervised learning model to detect MRG which achieves 0.921 ROC AUC using Random Forest, outperforming the baseline by 7.97% higher AUC. Additionally, we perform geographical location-based and temporal analysis of these groups. Interestingly, we find the presence of the same group, retweeting different political events that took place in different continents at different times. We also discover masquerading techniques used by MRG to evade detection.

Dataset

The annotated retweeter groups are available in the dataset folder.

The dataset is in JSON format. It can be easily exported to MongoDB.

Every collection has three fields: id, group_ids, and label.

id is a unique identifier for each group.
group_ids consists of a list of Twitter ids of the users for that particular group.
label is a boolean field. It is either True or False.

Contact [email protected] for more details.

To cite, please use the following:

@inproceedings{gupta2019malreg,
  title={MalReG: Detecting and Analyzing Malicious Retweeter Groups},
  author={Gupta, Sonu and Kumaraguru, Ponnurangam and Chakraborty, Tanmoy},
  booktitle={Proceedings of the ACM India Joint International Conference on Data Science and Management of Data},
  pages={61--69},
  year={2019},
  organization={ACM}
}

About

The repository contains scripts and the annotated dataset used in our paper "MalReG: Detecting and Analyzing Malicious Retweeter Groups" (accepted at CoDS-COMAD 2019).

Resources

Readme
Activity

Stars

0 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages