Because writing computer programs is hard, computer programmers are taught to use encapsulation and mod-ularity to hide complexity and reduce the potential for errors. Their programs will have a high-level, hierar-chical structure that reflects their choice of internal ab-stractions. We designed and forged a system, Laika, that detects this structure in memory using Bayesian unsu-pervised learning. Because almost all programs use data structures, their memory images consist of many copies of a relatively small number of templates. Given a mem-ory image, Laika can find both the data structures and their instantiations. We then used Laika to detect three common polymor-phic botnets by comparing their data structures. Because it avoids their c...
Polymorphic malcode remains a troubling threat. The ability formal code to automatically transform i...
Turing Award winner Niklaus Wirth famously noted, `Algorithms + Data Structures ...
Modern antivirus systems (AVSs) are not able to detect new polymorphic malware variants until they e...
Because writing computer programs is hard, computer programmers are taught to use encapsulation and ...
Reversing engineering of data structures involves two aspects: (1) given an application binary, infe...
As the complexity of malware grows, so does the necessity of employing program structuring mechanism...
As the complexity of malware grows, so does the necessity of employing program structuring mechanism...
Polymorphic malcode remains a troubling threat. The ability for malcode to automatically transform i...
The techniques employed by viruses to avoid detection by antivirus scanners are becoming increasingl...
Commercially available antivirus software relies on a traditional malware detection technique known ...
This thesis explores detecting patterns in the most general interface ...
POlymorphic malcode remains one of the most troubling threats for information security and intrusion...
One of the most significant issues facing internet users nowadays is malware. Polymorphic malware is...
This thesis deals with polymorphic engine transformation algorithms. It describes how the polymorphi...
Computer viruses are big threat to computer world; researchers doing work in this area have made var...
Polymorphic malcode remains a troubling threat. The ability formal code to automatically transform i...
Turing Award winner Niklaus Wirth famously noted, `Algorithms + Data Structures ...
Modern antivirus systems (AVSs) are not able to detect new polymorphic malware variants until they e...
Because writing computer programs is hard, computer programmers are taught to use encapsulation and ...
Reversing engineering of data structures involves two aspects: (1) given an application binary, infe...
As the complexity of malware grows, so does the necessity of employing program structuring mechanism...
As the complexity of malware grows, so does the necessity of employing program structuring mechanism...
Polymorphic malcode remains a troubling threat. The ability for malcode to automatically transform i...
The techniques employed by viruses to avoid detection by antivirus scanners are becoming increasingl...
Commercially available antivirus software relies on a traditional malware detection technique known ...
This thesis explores detecting patterns in the most general interface ...
POlymorphic malcode remains one of the most troubling threats for information security and intrusion...
One of the most significant issues facing internet users nowadays is malware. Polymorphic malware is...
This thesis deals with polymorphic engine transformation algorithms. It describes how the polymorphi...
Computer viruses are big threat to computer world; researchers doing work in this area have made var...
Polymorphic malcode remains a troubling threat. The ability formal code to automatically transform i...
Turing Award winner Niklaus Wirth famously noted, `Algorithms + Data Structures ...
Modern antivirus systems (AVSs) are not able to detect new polymorphic malware variants until they e...
.jpg%3Fwidth%3D300&w=3840&q=75)
.jpg%3Fwidth%3D300&w=3840&q=75)
Add to ORKG