English
Related papers

Related papers: Applying Memory Forensics to Rootkit Detection

200 papers

Embedded systems permeate through nearly all aspects of modern society. From cars to refrigerators to nuclear refineries, securing these systems has never been more important. Intrusions, such as the Stuxnet malware which broke the…

Cryptography and Security · Computer Science 2016-11-03 Peter Henderson , Muthucumaru Maheswaran

In the past decade, the cyber-crime related to mobile devices has increased. Mobile devices, especially the ones running on Android operating system are particularly interesting to malware creators, as the users often keep the biggest…

Cryptography and Security · Computer Science 2019-10-24 Nikola Milosevic , Junfan Huang

Cyber-physical microgrids are vulnerable to rootkit attacks that manipulate system dynamics to create instabilities in the network. Rootkits tend to hide their access level within microgrid system components to launch sudden attacks that…

Cryptography and Security · Computer Science 2023-06-28 Suman Rath , Tapadhir Das , Shamik Sengupta

Machine-learning models have been recently used for detecting malicious Android applications, reporting impressive performances on benchmark datasets, even when trained only on features statically extracted from the application, such as…

Machine Learning · Computer Science 2018-10-30 Marco Melis , Davide Maiorca , Battista Biggio , Giorgio Giacinto , Fabio Roli

New computing paradigms, modern feature-rich programming languages and off-the-shelf software libraries enabled the development of new sophisticated malware families. Evidence of this phenomena is the recent growth of fileless malware…

Cryptography and Security · Computer Science 2019-11-27 Sherif Saad , Farhan Mahmood , William Briguglio , Haytham Elmiligi

The ever increasing volume of data in digital forensic investigation is one of the most discussed challenges in the field. Usually, most of the file artefacts on seized devices are not pertinent to the investigation. Manually retrieving…

Cryptography and Security · Computer Science 2019-07-03 Xiaoyu Du , Mark Scanlon

Memory was captured from a system infected by ransomware and its contents was examined using live forensic tools, with the intent of identifying the symmetric encryption keys being used. NotPetya, Bad Rabbit and Phobos hybrid ransomware…

Cryptography and Security · Computer Science 2020-12-22 Simon R. Davies , Richard Macfarlane , William J. Buchanan

Rootkits are among the most elusive types of malware, capable of bypassing traditional static analysis methods due to their metamorphic behavior. Signature-based detection techniques struggle against these threats, necessitating a shift…

Cryptography and Security · Computer Science 2026-04-28 Paras Ghodeshwar , Sandeep K Shukla , Anand Handa , Nitesh Kumar

Nowadays, many tools are used to facilitate forensic tasks about data extraction and data analysis. In particular, some tools leverage Artificial Intelligence (AI) to automatically label examined data into specific categories (\ie, drugs,…

Computer Vision and Pattern Recognition · Computer Science 2024-12-03 Silvia Lucia Sanna , Leonardo Regano , Davide Maiorca , Giorgio Giacinto

Anti-forensics includes a growing set of techniques designed to obstruct forensic analysis. While cybercriminals increasingly rely on these methods, they also help researchers identify and remedy weaknesses in forensic tools, advancing the…

Analysing malware is important to understand how malicious software works and to develop appropriate detection and prevention methods. Dynamic analysis can overcome evasion techniques commonly used to bypass static analysis and provide…

Cryptography and Security · Computer Science 2023-10-30 Baskoro Adi Pratomo , Toby Jackson , Pete Burnap , Andrew Hood , Eirini Anthi

Real-time video surveillance systems store recorded video using digital video recorders (DVRs) and network video recorders (NVRs). To support continuous high-volume video storage, these devices employ specialized, nonstandard file systems…

Cryptography and Security · Computer Science 2026-05-11 Jinhee Yoon , Sungjae Hwang

Android is the predominant mobile operating system for the past few years. The prevalence of devices that can be powered by Android magnetized not merely application developers but also malware developers with criminal intention to design…

Cryptography and Security · Computer Science 2018-12-27 Abdelmonim Naway , Yuancheng LI

This paper delves into the dynamic landscape of computer security, where malware poses a paramount threat. Our focus is a riveting exploration of the recent and promising hardware-based malware detection approaches. Leveraging hardware…

Cryptography and Security · Computer Science 2024-04-19 Cristiano Pegoraro Chenet , Alessandro Savino , Stefano Di Carlo

Embedded controllers, sensors, actuators, advanced metering infrastructure, etc. are cornerstone components of cyber-physical energy systems such as microgrids (MGs). Harnessing their monitoring and control functionalities, sophisticated…

Systems and Control · Electrical Eng. & Systems 2022-02-22 Suman Rath , Ioannis Zografopoulos , Pedro P. Vergara , Vassilis C. Nikolaidis , Charalambos Konstantinou

We address multimodal deepfake detection requiring both robustness and interpretability by proposing FakeHunter, a unified framework that combines memory guided retrieval, a structured Observation-Thought-Action reasoning loop, and adaptive…

Multimedia · Computer Science 2025-09-11 Chen Chen , Runze Li , Zejun Zhang , Pukun Zhao , Fanqing Zhou , Longxiang Wang , Haojian Huang

Memory-related vulnerabilities constitute severe threats to the security of modern software. Despite the success of deep learning-based approaches to generic vulnerability detection, they are still limited by the underutilization of flow…

Cryptography and Security · Computer Science 2022-03-08 Sicong Cao , Xiaobing Sun , Lili Bo , Rongxin Wu , Bin Li , Chuanqi Tao

Although Rust ensures memory safety by default, it also permits the use of unsafe code, which can introduce memory safety vulnerabilities if misused. Unfortunately, existing tools for detecting memory bugs in Rust typically exhibit limited…

Cryptography and Security · Computer Science 2025-10-28 Georgios Androutsopoulos , Antonio Bianchi

In dynamic malware analysis, programs are classified as malware or benign based on their execution logs. We propose a concept of applying monotonic classification models to the analysis process, to make the trained model's predictions…

Cryptography and Security · Computer Science 2018-04-11 Alexander Chistyakov , Ekaterina Lobacheva , Alexander Shevelev , Alexey Romanenko

A rising number of botnet families have been successfully detected using deep learning architectures. While the variety of attacks increases, these architectures should become more robust against attacks. They have been proven to be very…

Cryptography and Security · Computer Science 2022-04-29 Rahim Taheri