English
Related papers

Related papers: Extending the Metasploit Framework to Implement an…

200 papers

Universal Serial Bus (USB)-based attacks have increased in complexity in recent years. Modern attacks incorporate a wide range of attack vectors, from social engineering to signal injection. The security community is addressing these…

Cryptography and Security · Computer Science 2025-07-04 Chun-Yi Wang , Fu-Hau Hsu

Pattern recognition and machine learning techniques have been increasingly adopted in adversarial settings such as spam, intrusion and malware detection, although their security against well-crafted attacks that aim to evade detection by…

Machine Learning · Computer Science 2020-05-26 Fei Zhang , Patrick P. K. Chan , Battista Biggio , Daniel S. Yeung , Fabio Roli

Multi-Variant Execution Environments (MVEEs) are a promising technique to protect software against memory corruption attacks. They transparently execute multiple, diversified variants (often referred to as replicae) of the software…

Cryptography and Security · Computer Science 2016-07-27 Stijn Volckaert , Bjorn De Sutter , Koen De Bosschere , Per Larsen

As advances in Deep Neural Networks (DNNs) demonstrate unprecedented levels of performance in many critical applications, their vulnerability to attacks is still an open question. We consider evasion attacks at testing time against Deep…

Cryptography and Security · Computer Science 2022-06-16 Alesia Chernikova , Alina Oprea

The vehicular Metaverse represents an emerging paradigm that merges vehicular communications with virtual environments, integrating real-world data to enhance in-vehicle services. However, this integration faces critical security…

Cryptography and Security · Computer Science 2024-12-06 Ismail Lotfi , Marwa Qaraqe , Ali Ghrayeb , Dusit Niyato

Command and Control (C2) communication is a key component of any structured cyber-attack. As such, security operations actively try to detect this type of communication in their networks. This poses a problem for legitimate pentesters that…

Cryptography and Security · Computer Science 2022-09-05 Gonçalo Xavier , Carlos Novo , Ricardo Morla

Machine learning is a popular approach to signatureless malware detection because it can generalize to never-before-seen malware families and polymorphic strains. This has resulted in its practical use for either primary detection engines…

Cryptography and Security · Computer Science 2018-01-31 Hyrum S. Anderson , Anant Kharkar , Bobby Filar , David Evans , Phil Roth

Software vulnerabilities remain a significant risk factor in achieving security objectives within software development organizations. This is especially true where either proprietary or open-source software (OSS) is included in the…

Software Engineering · Computer Science 2025-09-23 James J. Cusick

Mainstream software applications and tools are the configurable platforms with an enormous number of parameters along with their values. Certain settings and possible interactions between these parameters may harden (or soften) the security…

Software Engineering · Computer Science 2020-06-17 Shuvalaxmi Dass , Akbar Siami Namin

Modern threat landscapes continue to evolve with increasing sophistication, challenging traditional detection methodologies and necessitating innovative solutions capable of addressing complex adversarial tactics. A novel framework was…

Cryptography and Security · Computer Science 2025-03-27 Levi Gareth , Maximilian Fairbrother , Peregrine Blackwood , Lucasta Underhill , Benedict Ruthermore

Malicious software is abundant in a world of innumerable computer users, who are constantly faced with these threats from various sources like the internet, local networks and portable drives. Malware is potentially low to high risk and can…

Cryptography and Security · Computer Science 2012-05-15 Priyank Singhal , Nataasha Raul

Malware change day by day and become sophisticated. Not only the complexity of the algorithm that generating malware, but also the camouflage methods. Camouflage, formerly, only need a simple encryption. Now, camouflage are able to change…

Cryptography and Security · Computer Science 2025-08-05 Luqman Muhammad Zagi

A drive by download is a download that occurs without users action or knowledge. It usually triggers an exploit of vulnerability in a browser to downloads an unknown file. The malicious program in the downloaded file installs itself on the…

Cryptography and Security · Computer Science 2020-04-10 Saeed Ibrahim , Nawwaf Al Herami , Ebrahim Al Naqbi , Monther Aldwairi

The thesis advances the field of software security by providing knowledge and automation support for software vulnerability assessment using data-driven approaches. Software vulnerability assessment provides important and multifaceted…

Software Engineering · Computer Science 2023-06-21 Triet H. M. Le

Software systems have grown as an indispensable commodity used across various industries, and almost all essential services depend on them for effective operation. The software is no longer an independent or stand-alone piece of code…

Software Engineering · Computer Science 2025-05-29 Ritwik Murali , Akash Ravi

With web applications becoming a preferred method of presenting graphical user interfaces to users, software vulnerabilities affecting web applications are becoming more and more prevalent and devastating. Some of these vulnerabilities,…

Cryptography and Security · Computer Science 2019-08-14 Michael Flanders

Ransomware core capability, unauthorized encryption, demands controls that identify and block malicious cryptographic activity without disrupting legitimate use. We present a probabilistic, risk-based access control architecture that…

Cryptography and Security · Computer Science 2026-03-24 Kenan Begovic , Abdulaziz Al-Ali , Qutaibah Malluhi

Machine learning for malware classification shows encouraging results, but real deployments suffer from performance degradation as malware authors adapt their techniques to evade detection. This phenomenon, known as concept drift, occurs as…

Cryptography and Security · Computer Science 2024-01-09 Federico Barbero , Feargus Pendlebury , Fabio Pierazzi , Lorenzo Cavallaro

In this work, we propose a testbed environment to capture the attack strategies of an adversary carrying out a cyber-attack on an enterprise network. The testbed contains nodes with known security vulnerabilities which can be exploited by…

Cryptography and Security · Computer Science 2023-07-07 Ayush Kumar , David K. Yau

State of the art deep learning techniques are known to be vulnerable to evasion attacks where an adversarial sample is generated from a malign sample and misclassified as benign. Detection of encrypted malware command and control traffic…

Cryptography and Security · Computer Science 2020-11-10 Carlos Novo , Ricardo Morla