超级会员免费看
DeepReflect是一款用于恶意二进制文件中恶意组件定位和识别的工具,采用无监督深度学习网络和半监督聚类分析,减少分析师逆向工程的工作量。在评估中,它平均减少了85%的分析函数,检出率高达80%,优于基于签名的工具。此外,DeepReflect通过结合控制流图和API调用识别恶意行为,使用自动编码器和HDBSCAN聚类算法进行功能聚类。
文章目录
DeepReflect: Discovering Malicious Functionality through Binary Reconstruction
佐治亚理工学院
开源:https://github.com/evandowning/deepreflect
abstract
Deep learning has continued to show promising results for malware classification. However, to identify key malicious behaviors, malware analysts are still tasked with reverse engineering unknown malware binaries using static analysis tools, which can take hours.
Although machine learning can be used to help identify important parts of a binary, supervised approaches are impractical due to the expense of acquiring a sufficiently large labeled
订阅专栏 解锁全文
扫一扫
被折叠的 条评论
为什么被折叠?
到【灌水乐园】发言
