English
Related papers

Related papers: Malicious Behavior Detection using Windows Audit L…

200 papers

As LLM-based agents become increasingly prevalent, backdoors can be implanted into agents through user queries or environment feedback, raising critical concerns regarding safety vulnerabilities. However, backdoor attacks are typically…

Cryptography and Security · Computer Science 2025-10-14 Pengyu Zhu , Zhenhong Zhou , Yuanhe Zhang , Shilinlu Yan , Kun Wang , Sen Su

In the current rapidly changing digital environment, businesses are under constant stress to ensure that their systems are secured. Security audits help to maintain a strong security posture by ensuring that policies are in place, controls…

Cryptography and Security · Computer Science 2025-05-19 Jia Hui Chin , Pu Zhang , Yu Xin Cheong , Jonathan Pan

Intrusion detection systems (IDS) monitor system logs and network traffic to recognize malicious activities in computer networks. Evaluating and comparing IDSs with respect to their detection accuracies is thereby essential for their…

Cryptography and Security · Computer Science 2023-05-16 Max Landauer , Florian Skopik , Maximilian Frank , Wolfgang Hotwagner , Markus Wurzenberger , Andreas Rauber

Ensuring the safe use of agentic systems requires a thorough understanding of the range of malicious behaviors these systems may exhibit when under attack. In this paper, we evaluate the robustness of LLM-based agentic systems against…

Machine Learning · Computer Science 2025-10-08 Jonathan Nöther , Adish Singla , Goran Radanovic

Threat actors can be persistent, motivated and agile, and leverage a diversified and extensive set of tactics and techniques to attain their goals. In response to that, defenders establish threat intelligence programs to stay…

Cryptography and Security · Computer Science 2021-03-30 Vasileios Mavroeidis , Audun Jøsang

Advanced attack campaigns span across multiple stages and stay stealthy for long time periods. There is a growing trend of attackers using off-the-shelf tools and pre-installed system applications (such as \emph{powershell} and \emph{wmic})…

Cryptography and Security · Computer Science 2019-05-21 Aditya Kuppa , Slawomir Grzonkowski , Muhammad Rizwan Asghar , Nhien-An Le-Khac

To identify safety violations, auditors often search over large sets of agent traces. This search is difficult because failures are often rare, complex, and sometimes even adversarially hidden and only detectable when multiple traces are…

Artificial Intelligence · Computer Science 2026-04-14 Adam Stein , Davis Brown , Hamed Hassani , Mayur Naik , Eric Wong

Static detection technologies based on signature-based approaches that are widely used in Android platform to detect malicious applications. It can accurately detect malware by extracting signatures from test data and then comparing the…

Cryptography and Security · Computer Science 2017-09-27 Sanya Chaba , Rahul Kumar , Rohan Pant , Mayank Dave

An intrusion detection system framework using mobile agents is a layered framework mechanism designed to support heterogeneous network environments to identify intruders at its best. Traditional computer misuse detection techniques can…

Networking and Internet Architecture · Computer Science 2010-07-15 N. Jaisankar , R. Saravanan , K. Durai Swamy

Recent years have seen the rise of more sophisticated attacks including advanced persistent threats (APTs) which pose severe risks to organizations and governments by targeting confidential proprietary information. Additionally, new malware…

Cryptography and Security · Computer Science 2014-11-26 Alina Oprea , Zhou Li , Ting-Fang Yen , Sang Chin , Sumayah Alrwais

To enable human oversight, agentic AI systems often provide a trace of reasoning and action steps. Designing traces to have an informative, but not overwhelming, level of detail remains a critical challenge. In three user studies on a…

Human-Computer Interaction · Computer Science 2026-02-20 Madeleine Grunde-McLaughlin , Hussein Mozannar , Maya Murad , Jingya Chen , Saleema Amershi , Adam Fourney

Agents operating with computer and Web use inevitably encounter errors: inaccessible webpages, missing files, local and remote misconfigurations, etc. These errors do not thwart agents based on state-of-the-art models. They helpfully…

Computation and Language · Computer Science 2026-05-20 Rishi Jha , Harold Triedman , Arkaprabha Bhattacharya , Vitaly Shmatikov

Agentic security systems increasingly audit live targets with tool-using LLMs, but prior systems fix a single coordination topology, leaving unclear when additional agents help and when they only add cost. We treat topology choice as an…

Cryptography and Security · Computer Science 2026-04-22 Isaac David , Arthur Gervais

Modern AI agents execute real-world side effects through tool calls such as file operations, shell commands, HTTP requests, and database queries. A single unsafe action, including accidental deletion, credential exposure, or data…

Artificial Intelligence · Computer Science 2026-05-07 Chenglin Yang

Insider threat is one of the most pernicious threat vectors to information and communication technologies (ICT)across the world due to the elevated level of trust and access that an insider is afforded. This type of threat can stem from…

Cryptography and Security · Computer Science 2021-02-11 Nidhi Rastogi , Qicheng Ma

Several solutions ensuring the dynamic detection of malicious activities on Android ecosystem have been proposed. These are represented by generic rules and models that identify any purported malicious behavior. However, the approaches…

Cryptography and Security · Computer Science 2023-08-01 Abdellah Ouaguid , Mohamed Ouzzif , Noreddine Abghour

With the increasingly rapid development of new malicious computer software by bad faith actors, both commercial and research-oriented antivirus detectors have come to make greater use of machine learning tactics to identify such malware as…

Cryptography and Security · Computer Science 2021-12-07 Hamish Spencer , Wei Wang , Ruoxi Sun , Minhui Xue

Computer-using agents (CUAs), which can autonomously control computers to perform multi-step actions, might pose significant safety risks if misused. However, existing benchmarks mainly evaluate LMs in chatbots or simple tool use. To more…

Cryptography and Security · Computer Science 2025-09-25 Aaron Xuxiang Tian , Ruofan Zhang , Janet Tang , Ji Wang , Tianyu Shi , Jiaxin Wen

Linux containers are gaining increasing traction in both individual and industrial use, and as these containers get integrated into mission-critical systems, real-time detection of malicious cyber attacks becomes a critical operational…

Cryptography and Security · Computer Science 2017-01-05 Amr S. Abed , Charles Clancy , David S. Levy

The perpetual opposition between antiviruses and malware leads both parties to evolve continuously. On the one hand, antiviruses put in place solutions that are more and more sophisticated and propose more complex detection techniques in…

Cryptography and Security · Computer Science 2020-09-28 Cédric Herzog , Valérie Viet Triem Tong , Pierre Wilke , Arnaud van Straaten , Jean-Louis Lanet