Add to ORKGIn this paper, we present ShieldGen, a system for au-tomatically generating a data patch or a vulnerability signature for an unknown vulnerability, given a zero-day attack instance. The key novelty in our work is that we leverage knowledge of the data format to generate new potential attack instances, which we call probes, and use a zero-day detector as an oracle to determine if an in-stance can still exploit the vulnerability; the feedback of the oracle guides our search for the vulnerability signa-ture. We have implemented a ShieldGen prototype and experimented with three known vulnerabilities. The gen-erated signatures have no false positives and a low rate of false negatives due to imperfect data format specifi-cations and the sampling ...
Penetration testing (PT) is nowadays one of the most common and used activities to evaluate a given ...
Penetration testing (PT) is nowadays one of the most common and used activities to evaluate a given ...
Penetration testing (PT) is nowadays one of the most common and used activities to evaluate a given ...
N-day vulnerabilities are public, recently disclosed, but not well-known software and hardware vulne...
N-day vulnerabilities are public, recently disclosed, but not well-known software and hardware vulne...
N-day vulnerabilities are public, recently disclosed, but not well-known software and hardware vulne...
As hacking techniques become more sophisticated, vulnerabilities have been gradually increasing. Bet...
Our goal was to collect data from the myriad computer vulnerability notices that exist on the World ...
To maintain the security of information systems, deploying the proposed updates as soon as they are ...
Zero-day vulnerabilities are those that have not previously been identified and thus are in their ze...
Zero-day vulnerabilities are unknown and therefore not addressed with the result that they can be ex...
Software vulnerabilities (i.e. programming errors that could be exploited by online offenders) are c...
Penetration testing (PT) is nowadays one of the most common and used activities to evaluate a given ...
Penetration testing (PT) is nowadays one of the most common and used activities to evaluate a given ...
Zero-day vulnerabilities are unknown and therefore not addressed with the result that they can be ex...
Penetration testing (PT) is nowadays one of the most common and used activities to evaluate a given ...
Penetration testing (PT) is nowadays one of the most common and used activities to evaluate a given ...
Penetration testing (PT) is nowadays one of the most common and used activities to evaluate a given ...
N-day vulnerabilities are public, recently disclosed, but not well-known software and hardware vulne...
N-day vulnerabilities are public, recently disclosed, but not well-known software and hardware vulne...
N-day vulnerabilities are public, recently disclosed, but not well-known software and hardware vulne...
As hacking techniques become more sophisticated, vulnerabilities have been gradually increasing. Bet...
Our goal was to collect data from the myriad computer vulnerability notices that exist on the World ...
To maintain the security of information systems, deploying the proposed updates as soon as they are ...
Zero-day vulnerabilities are those that have not previously been identified and thus are in their ze...
Zero-day vulnerabilities are unknown and therefore not addressed with the result that they can be ex...
Software vulnerabilities (i.e. programming errors that could be exploited by online offenders) are c...
Penetration testing (PT) is nowadays one of the most common and used activities to evaluate a given ...
Penetration testing (PT) is nowadays one of the most common and used activities to evaluate a given ...
Zero-day vulnerabilities are unknown and therefore not addressed with the result that they can be ex...
Penetration testing (PT) is nowadays one of the most common and used activities to evaluate a given ...
Penetration testing (PT) is nowadays one of the most common and used activities to evaluate a given ...
Penetration testing (PT) is nowadays one of the most common and used activities to evaluate a given ...