{"ID":2868596,"CreatedAt":"2026-06-01T04:54:23.091178241Z","UpdatedAt":"2026-06-01T04:54:23.091178241Z","DeletedAt":null,"paper_url":"https://arxiv.org/abs/2509.15589","arxiv_id":"2509.15589","title":"Process-Driven Visual Analysis of Cybersecurity Capture the Flag Exercises","abstract":"Hands-on training sessions become a standard way to develop and increase knowledge in cybersecurity. As practical cybersecurity exercises are strongly process-oriented with knowledge-intensive processes, process mining techniques and models can help enhance learning analytics tools. The design of our open-source analytical dashboard is backed by guidelines for visualizing multivariate networks complemented with temporal views and clustering. The design aligns with the requirements for post-training analysis of a special subset of cybersecurity exercises -- supervised Capture the Flag games. Usability is demonstrated in a case study using trainees' engagement measurement to reveal potential flaws in training design or organization.","short_abstract":"Hands-on training sessions become a standard way to develop and increase knowledge in cybersecurity. As practical cybersecurity exercises are strongly process-oriented with knowledge-intensive processes, process mining techniques and models can help enhance learning analytics tools. The design of our open-source analyt...","url_abs":"https://arxiv.org/abs/2509.15589","url_pdf":"https://arxiv.org/pdf/2509.15589v2","authors":"[\"Radek Ošlejšek\",\"Radoslav Chudovský\",\"Martin Macak\"]","published":"2025-09-19T04:42:33Z","proceeding":"cs.HC","tasks":"[\"cs.HC\"]","methods":"[\"Generative Adversarial Network\"]","has_code":false}