Video Converter
Audio Converter
Image Converter
PDF Converter
File Compressor
scalable web object inspec0on and malfease collec0on

Scalable Web Object Inspec0on and Malfease Collec0on Charalampos - PowerPoint PPT Presentation

Apr 12, 2023 •963 likes •1.08k views

Scalable Web Object Inspec0on and Malfease Collec0on Charalampos Andrianakis Paul Seymer Angelos Stavrou The Problem Driveby download aEacks infect thousands of computers daily Millions of URLs spread the aEacks Current

  1. Scalable Web Object Inspec0on and Malfease Collec0on Charalampos Andrianakis Paul Seymer Angelos Stavrou

  2. The Problem • Drive‐by download aEacks infect thousands of computers daily • Millions of URLs spread the aEacks • Current technologies based on full system virtualiza0on can’t scale

  3. Our Solu0on • A URL analysis framework using lightweight virtualiza0on and a modified WINE engine – Scans thousands of URLs in parallel – Minimizes resource consump0on (VM uses less than 300MB of disk, 3MB of memory) – Extracts the offending payload and use it for further analysis

  4. Framework Architecture

  5. Framework Architecture • OpenVZ containers with Debian Linux and WINE • Execute Internet Explorer inside WINE and visit malicious URL • NOP Sled detector inside WINE detects the aEack (heap spray) and extracts the payload

  6. Framework Architecture • The payload is executed inside WINE with the payload loader • Malware contacts a remote server and downloads zero day malware binaries

  7. Framework Architecture

  8. Scalability

  9. Scalability

  10. Limita0ons • Our solu0on is limited to detec0ng heap spray aEacks only • If the offending payload references func0ons or data in the address space of the browser it can evade detec0on

  11. Ques0ons ? Thank you!

Recommend

Object Oriented Object 3 Programming Object 1 Object 2 Object 4 For : COP 3330. Object

Object Oriented Object 3 Programming Object 1 Object 2 Object 4 For : COP 3330. Object

4/13/2017 OOP Object Oriented Object 3 Programming Object 1 Object 2 Object 4 For : COP 3330. Object oriented Programming (Using C++) ht t p: / / www. com pgeom . com / ~pi yush/ t each/ 3330 Objects: State (fields), Behavior (member

638 views • 6 slides
Web Services Web Services Towards Web Services Towards Web Services Towards Web Services A

Web Services Web Services Towards Web Services Towards Web Services Towards Web Services A

Web Services Web Services Towards Web Services Towards Web Services Towards Web Services A long way to get here What is a Web Service? What is a Web Service? What is a Web Service? Web Services Web Services Software service :

553 views • 33 slides
Cache Coherence in Scalable Machines Scalable Cache Coherent Systems Scalable, distributed

Cache Coherence in Scalable Machines Scalable Cache Coherent Systems Scalable, distributed

Cache Coherence in Scalable Machines Scalable Cache Coherent Systems Scalable, distributed memory plus coherent replication Scalable distributed memory machines P-C-M nodes connected by network communication assist interprets

1.13k views • 87 slides
Object oriented Object oriented Object oriented Object oriented approach and UML approach and

Object oriented Object oriented Object oriented Object oriented approach and UML approach and

Object oriented Object oriented Object oriented Object oriented approach and UML approach and UML approach and UML approach and UML Goals The goals of this chapter are to introduce the object oriented approach to software systems

1.07k views • 92 slides
Object-Oriented Databases Object Oriented Databases ODMG Standard Object Model, Object

Object-Oriented Databases Object Oriented Databases ODMG Standard Object Model, Object

Object-Oriented Databases Object Oriented Databases ODMG Standard Object Model, Object Definition Language, Object Query Language Programming Language Bindings Outlook October 17, 2008 Michael Grossniklaus Department of

789 views • 27 slides
Scalable String Matching on the Scalable String Matching on the Scalable String Matching on the

Scalable String Matching on the Scalable String Matching on the Scalable String Matching on the

Scalable String Matching on the Scalable String Matching on the Scalable String Matching on the Cell BE Processor BE Processor Cell Cell BE Processor Daniele Scarpazza, Oreste Villa, Fabrizio Petrini Applied Computer Science Group Pacific

414 views • 21 slides
Object Space Volume Rendering Object Space Volume Rendering Ronald Peikert SciVis 2010 - Object

Object Space Volume Rendering Object Space Volume Rendering Ronald Peikert SciVis 2010 - Object

Object Space Volume Rendering Object Space Volume Rendering Ronald Peikert SciVis 2010 - Object Space Volume Rendering 4-1 Object space volume rendering In object space rendering methods, the main loop is not over the pixels but over the

490 views • 30 slides
Lecture 1: Semantic Web and RDF Aidan Hogan aidhog@gmail.com THE WEB The Web is now 26 years

Lecture 1: Semantic Web and RDF Aidan Hogan aidhog@gmail.com THE WEB The Web is now 26 years

Lecture 1: Semantic Web and RDF Aidan Hogan aidhog@gmail.com THE WEB The Web is now 26 years old Evolution of the Web The Future of the Web? THE SEMANTIC WEB The Semantic Web what is the Semantic Web? Semantic Web?

1.36k views • 99 slides
Web Mining Web Mining Web Mining Web Mining Web mining is the use of data mining techniques

Web Mining Web Mining Web Mining Web Mining Web mining is the use of data mining techniques

What is Web Mining? Wh t i W b Mi i What is Web Mining? Wh t i W b Mi i ? ? Web Mining Web Mining Web Mining Web Mining Web mining is the use of data mining techniques to automat cally d scover and extract nformat on automatically

778 views • 20 slides
CS 410/510: Web Basics Basics Web Clients HTTP Web Servers PC running Firefox Web

CS 410/510: Web Basics Basics Web Clients HTTP Web Servers PC running Firefox Web

CS 410/510: Web Basics Basics Web Clients HTTP Web Servers PC running Firefox Web Server Mac running Chrome Web Clients Basic Terminology | HTML | JavaScript Terminology Web page consists of objects Each object is

762 views • 47 slides
Scalable Vector Graphics (SVG) XML Graphics for the Web SVG Overview Scalable Vector Graphics

Scalable Vector Graphics (SVG) XML Graphics for the Web SVG Overview Scalable Vector Graphics

Scalable Vector Graphics (SVG) XML Graphics for the Web SVG Overview Scalable Vector Graphics (SVG) is a language for describing two- dimensional graphics and graphical applications in XML. SVG is suitable for Web applications based on

408 views • 17 slides
Web Mining Web Mining to automatically discover and extract information from Web

Web Mining Web Mining to automatically discover and extract information from Web

What is Web Mining? What is Web Mining? Web mining is the use of data mining techniques Web Mining Web Mining to automatically discover and extract information from Web documents/services (Etzioni, 1996, CACM 39(11)) 1 2 The Web The Web

470 views • 23 slides
Web Application Security Attacks on the Web Attacker Web User Application Web Database Web

Web Application Security Attacks on the Web Attacker Web User Application Web Database Web

IN3210 Network Security Web Application Security Attacks on the Web Attacker Web User Application Web Database Web Server Application 2 The OWASP Foundation The Open Web Application Security Project (OWASP) is a 501(c)(3)

1.22k views • 60 slides
Web Scraping 1 / 9 Web Scraping Two ways to mine data from the web The hard way, by web

Web Scraping 1 / 9 Web Scraping Two ways to mine data from the web The hard way, by web

Web Scraping 1 / 9 Web Scraping Two ways to mine data from the web The hard way, by web scraping The easy way, using web service APIs Well see examples of both. 2 / 9 Web Scraping Web scraping, a.k.a. screen scraping, means getting

486 views • 9 slides
Agenda Web MVC-2: Apache Struts Drawbacks with Web Model 1 Web Model 2 (Web MVC) Rimon

Agenda Web MVC-2: Apache Struts Drawbacks with Web Model 1 Web Model 2 (Web MVC) Rimon

Agenda Web MVC-2: Apache Struts Drawbacks with Web Model 1 Web Model 2 (Web MVC) Rimon Mikhaiel Struts framework rimon@cs.ualberta.ca Example of workflow management. A Hello World Example Web Model 2 Web Model 1 Web MVC

612 views • 4 slides
Chapter 8, Object Design: Object design is the process of adding details to the requirements

Chapter 8, Object Design: Object design is the process of adding details to the requirements

Object Design Object-Oriented Software Engineering Chapter 8, Object Design: Object design is the process of adding details to the requirements analysis and making implementation decisions Reuse and Patterns I The object designer must

308 views • 15 slides
W orldwide I ntelligence N etwork E nvironment (WINE) Symantec s Data

W orldwide I ntelligence N etwork E nvironment (WINE) Symantec s Data

W orldwide I ntelligence N etwork E nvironment (WINE) Symantec s Data Sharing Program Darren Shou and Tudor Dumitra Symantec Research Labs Goals of WINE

172 views • 14 slides
10 Credit Bundle Save up to 40% on report purchases Select from any type of report available:

10 Credit Bundle Save up to 40% on report purchases Select from any type of report available:

WINE INTELLIGENCE REPORTS SHOP 10 Credit Bundle Save up to 40% on report purchases Select from any type of report available: We see great Landscape Reports value in Wine Intelligence reports. The Landscape reports A comprehensive view

519 views • 4 slides
CSE 158/258 Web Mining and Recommender Systems Assignment 2 Assignment 2 Open-ended Due

CSE 158/258 Web Mining and Recommender Systems Assignment 2 Assignment 2 Open-ended Due

CSE 158/258 Web Mining and Recommender Systems Assignment 2 Assignment 2 Open-ended Due Dec 3 (Tuesday) Submissions should be made via gradescope Assignment 2 Basic tasks: 1. Identify a dataset to study and describe its

675 views • 43 slides
The Value of Working With Wine Bloggers Panelists : Ilona Thompson, CWAS www.Palatexposure.com

The Value of Working With Wine Bloggers Panelists : Ilona Thompson, CWAS www.Palatexposure.com

The Value of Working With Wine Bloggers Panelists : Ilona Thompson, CWAS www.Palatexposure.com Miki Finnin www.TheVineyardTrail.com Moderator : Jason Stubblefield (Stub) www.CorkEnvy.com Overview Intro of Panelists Who Blogs About

714 views • 27 slides
PHPE 4000 Individual and Group Decision Making Eric Pacuit University of Maryland pacuit.org 1

PHPE 4000 Individual and Group Decision Making Eric Pacuit University of Maryland pacuit.org 1

PHPE 4000 Individual and Group Decision Making Eric Pacuit University of Maryland pacuit.org 1 / 11 Beliefs: How should we represent the decision makers beliefs about the decision problems (e.g., the available outcomes, menu items,

1.07k views • 37 slides
- the options must be thoroughly compared to each other; - the decision-maker must use a

- the options must be thoroughly compared to each other; - the decision-maker must use a

A PPLIED V OCATIONAL P SYCHOLOGY AND P OLICY R ESEARCH U NIT They preach water and drink wine. or The Unbearable Lightness of Rational Decision-Making Models in Career Counselling. AIOSP/IAEVG International Conference University of

932 views • 7 slides
Information Retrieval > Query Us User er Query Words Query Words Search Personalization

Information Retrieval > Query Us User er Query Words Query Words Search Personalization

Information Retrieval > Query Us User er Query Words Query Words Search Personalization Cont ntex ext Ranked List Ranked List Domain Dom Jaime Teevan Cont ntex ext Microsoft Research Ta Task/ sk/Use Use Cont ntex ext

252 views • 7 slides
The Big Project Aws Albarghouthi Calvin Smith University of Wisconsin-Madison input data

The Big Project Aws Albarghouthi Calvin Smith University of Wisconsin-Madison input data

The Big Project Aws Albarghouthi Calvin Smith University of Wisconsin-Madison input data map shu ffl e reduce output data m(i 1 ) i 1 reduce i 2 m(i 2 ) reduce output i 3 reduce m(i 3 ) Big : Analyses from Examples [PLDI16]

546 views • 29 slides

More recommend

Explore More Topics

Stay informed with curated content and fresh updates.

animals pets art culture automotive transportation business finance computer internet construction architecture education-career electronics communication

Logo Sambuz

Unleash a World of Digital Possibilities—Browse, Share, and Explore Content Without Boundaries

Useful Links

About Us Privacy Services FAQ's Contact

Newsletter

Stay Informed & Inspired—Subscribe for the Latest Updates, Tips, and Exclusive Content Directly to Your Inbox.

Mail Us

mail@sambuz.com

2026 SAMBUZ, All right reserved.