Titlebook: Recent Advances in Intrusion Detection; 14th International S Robin Sommer,Davide Balzarotti,Gregor Maier Conference proceedings 2011 Spring

Density

Automated Identification of Cryptographic Primitives in Binary Programs an important problem. Proprietary programs and especially malicious software (so called .) often use cryptography and we want to learn more about the context, e.g., which algorithms and keys are used by the program. This helps an analyst to quickly understand what a given binary program does and ea

jungle

Shellzer: A Tool for the Dynamic Analysis of Malicious Shellcodede is a challenging task, since encryption and evasion techniques are often used. This paper introduces ., a novel dynamic shellcode analyzer that generates a complete list of the API functions called by the shellcode, and, in addition, returns the binaries retrieved at run-time by the shellcode. Th

貧窮地活

KLIMAX: Profiling Memory Write Patterns to Detect Keystroke-Harvesting Malwarene of the most prominent activities to acquire private user information is to eavesdrop and harvest user-issued keystrokes. Despite the serious threat involved, keylogging activities are challenging to detect in the general case. From an operating system perspective, their general behavior is no dif

Dorsal

正論

On the Expressiveness of Return-into-libc Attacksredirect control flow through existing (libc) functions within the legitimate program. While dangerous, it is generally considered limited in its expressive power since it only allows the attacker to execute straight-line code. In other words, RILC attacks are believed to be incapable of arbitrary c

過(guò)剩

Cross-Domain Collaborative Anomaly Detection: So Far Yet So Closeonally identifiable information. Unfortunately, the need for ubiquitous and often anonymous access exposes web servers to adversaries. Indeed, network-borne zero-day attacks pose a critical and widespread threat to web servers that cannot be mitigated by the use of signature-based intrusion detectio

PACT

出汗

激怒某人

FLACK