N-Gram-Based Detection of New Malicious Code

13 years 8 months ago

Download tony.abou-assaleh.net

The current commercial anti-virus software detects a virus only after the virus has appeared and caused damage. Motivated by the standard signature-based technique for detecting viruses, and a recent successful text classification method, we explore the idea of automatically detecting new malicious code using the collected dataset of the benign and malicious code. We obtained accuracy of 100% in the training data, and 98% in 3-fold cross-validation.

Tony Abou-Assaleh, Nick Cercone, Vlado Keselj, Ray

Real-time Traffic

Commercial Anti-virus Software | COMPSAC 2004 | Malicious Code | Software Engineering | Successful Text Classification |

claim paper

» Malicious Shellcode Detection with Virtual Memory Snapshots

» Host Based Intrusion Detection using Machine Learning

» Using Verification Technology to Specify and Detect Malware

» Probabilistic suffix models for API sequence analysis of Windows XP applications

» Detecting Selfmutating Malware Using ControlFlow Graph Matching

» Pushdown Model Checking for Malware Detection

» Heap Taichi exploiting memory allocation granularity in heapspraying attacks

» A configurable mobile agent data protection protocol

Post Info
More Details (n/a)

Added	20 Aug 2010
Updated	20 Aug 2010
Type	Conference
Year	2004
Where	COMPSAC
Authors	Tony Abou-Assaleh, Nick Cercone, Vlado Keselj, Ray Sweidan

Comments (0)

Sciweavers

N-Gram-Based Detection of New Malicious Code

Commercial Anti-virus Software | COMPSAC 2004 | Malicious Code | Software Engineering | Successful Text Classification |

Explore & Download

Productivity Tools

Document Tools

Image Tools

Sciweavers