English
Related papers

Related papers: Automatic Yara Rule Generation Using Biclustering

200 papers

Today's security tools predominantly rely on predefined rules crafted by experts, making them poorly adapted to the emergence of software supply chain attacks. To tackle this limitation, we propose a novel tool, RuleLLM, which leverages…

Software Engineering · Computer Science 2025-04-25 XiangRui Zhang , HaoYu Chen , Yongzhong He , Wenjia Niu , Qiang Li

YARA rules are widely shared across threat intelligence communities to enable collective defence against malware. This practice implicitly assumes that removing metadata (e.g., author fields) sufficiently protects the identity of…

Cryptography and Security · Computer Science 2026-05-27 Usman Rabiu Isah , Laurent Bobelin , Pascal Berthomé

A strategy used by malicious actors is to "live off the land," where benign systems and tools already available on a victim's systems are used and repurposed for the malicious actor's intent. In this work, we ask if there is a way for…

Cryptography and Security · Computer Science 2024-11-28 Siddhant Gupta , Fred Lu , Andrew Barlow , Edward Raff , Francis Ferraro , Cynthia Matuszek , Charles Nicholas , James Holt

Malware often uses obfuscation techniques or is modified slightly to evade signature detection from antivirus software and malware analysis tools. Traditionally, to determine if a file is malicious and identify what type of malware a sample…

Cryptography and Security · Computer Science 2021-11-30 Adam Lockett

YARA has established itself as the de facto standard for "Detection as Code," enabling analysts and DevSecOps practitioners to define signatures for malware identification across the software supply chain. Despite its pervasive use, the…

Software Engineering · Computer Science 2026-03-17 Dectot--Le Monnier de Gouville Esteban , Mohammad Hamdaqa , Moataz Chouchen

Sandbox evasion remains a critical challenge for automated malware analysis, as modern malware employs environment checks to detect analysis platforms and suppress malicious behavior. Existing approaches rely on manually crafted bypass…

Cryptography and Security · Computer Science 2026-05-22 Zhiyong Sui , Lamine Noureddine , Mst Eshita Khatun , Sideeq Bello , Justin Woodring , Aisha Ali-Gombe

N-grams have been a common tool for information retrieval and machine learning applications for decades. In nearly all previous works, only a few values of $n$ are tested, with $n > 6$ being exceedingly rare. Larger values of $n$ are not…

Cryptography and Security · Computer Science 2019-08-02 Edward Raff , William Fleming , Richard Zak , Hyrum Anderson , Bill Finlayson , Charles Nicholas , Mark McLean

Network and system security are incredibly critical issues now. Due to the rapid proliferation of malware, traditional analysis methods struggle with enormous samples. In this paper, we propose four easy-to-extract and small-scale features,…

Cryptography and Security · Computer Science 2022-01-20 Zhenshuo Chen , Eoin Brophy , Tomas Ward

One of the pivotal security threats for the embedded computing systems is malicious software a.k.a malware. With efficiency and efficacy, Machine Learning (ML) has been widely adopted for malware detection in recent times. Despite being…

Cryptography and Security · Computer Science 2024-04-16 Sreenitha Kasarapu , Sanket Shukla , Rakibul Hassan , Avesta Sasan , Houman Homayoun , Sai Manoj Pudukotai Dinakarrao

Biclustering is an unsupervised data mining technique that aims to unveil patterns (biclusters) from gene expression data matrices. In the framework of this thesis, we propose new biclustering algorithms for microarray data. The latter is…

Machine Learning · Computer Science 2018-11-26 Amina Houari

The cycle of scientific discovery is frequently bottlenecked by the slow, manual creation of software to support computational experiments\cite{hannay2009how}. To address this, we present Empirical Research Assistance (ERA), an AI system…

A classifier using byte n-grams as features is the only approach we have found fast enough to meet requirements in size (sub 2 MB), speed (multiple GB/s), and latency (sub 10 ms) for deployment in numerous malware detection scenarios.…

Cryptography and Security · Computer Science 2025-11-19 Edward Raff , Ryan R. Curtin , Derek Everett , Robert J. Joyce , James Holt

Constructing lineages of malware is an important cyber-defense task. Performing this task is difficult, however, due to the amount of malware data and obfuscation techniques by the authors. In this work, we formulate the lineage task as a…

Cryptography and Security · Computer Science 2016-03-29 Brian Ruttenberg , Lee Kellogg , Avi Pfeffer

Each day, anti-virus companies receive tens of thousands samples of potentially harmful executables. Many of the malicious samples are variations of previously encountered malware, created by their authors to evade pattern-based detection.…

Cryptography and Security · Computer Science 2010-08-27 Joris Kinable , Orestis Kostakis

Industry practitioners care about small improvements in malware detection accuracy because their models are deployed to hundreds of millions of machines, meaning a 0.1\% change can cause an overwhelming number of false positives. However,…

Machine Learning · Computer Science 2023-12-27 Tirth Patel , Fred Lu , Edward Raff , Charles Nicholas , Cynthia Matuszek , James Holt

In the biclustering problem, we seek to simultaneously group observations and features. While biclustering has applications in a wide array of domains, ranging from text mining to collaborative filtering, the problem of identifying…

Methodology · Statistics 2018-06-07 Eric C. Chi , Genevera I. Allen , Richard G. Baraniuk

This paper describes an efficient rule generation algorithm, called rule generation from artificial neural networks (RGANN) to generate symbolic rules from ANNs. Classification rules are sought in many areas from automatic knowledge…

Neural and Evolutionary Computing · Computer Science 2010-09-28 S. M. Kamruzzaman

In this paper, I describe several approaches to automatic or semi-automatic development of symbolic rules for grammar checkers from the information contained in corpora. The rules obtained this way are an important addition to…

Computation and Language · Computer Science 2012-11-30 Marcin Miłkowski

We study superfast algorithms that computes low rank approximation of a matrix (hereafter referred to as LRA) that use much fewer memory cells and arithmetic operations than the input matrix has entries. We first specify a family of 2mn…

Numerical Analysis · Mathematics 2018-06-08 Victor Y. Pan , Qi Luan , John Svadlenka , Liang Zhao

Malware detection and classification into families are critical tasks in cybersecurity, complicated by the continual evolution of malware to evade detection. This evolution introduces concept drift, in which the statistical properties of…

Cryptography and Security · Computer Science 2026-02-04 Olha Jurečková , Martin Jureček
‹ Prev 1 2 3 10 Next ›