nicter: An incident analysis system toward binding network monitoring with malware analysis
We have been developing the Network Incident analysis Center for Tactical Emergency
Response (nicter), whose present focus is on detecting and identifying propagating …
Response (nicter), whose present focus is on detecting and identifying propagating …
A study on association rule mining of darknet big data
Global darknet monitoring provides an effective way to observe cyber-attacks that are
significantly threatening network security and management. In this paper, we present a study …
significantly threatening network security and management. In this paper, we present a study …
Automated malware analysis system and its sandbox for revealing malware's internal and external activities
Malware has been recognized as one of the major security threats in the Internet. Previous
researches have mainly focused on malware's internal activity in a system. However, it is …
researches have mainly focused on malware's internal activity in a system. However, it is …
Malware behavior analysis in isolated miniature network for revealing malware's network activity
Malware, such as computer viruses, worms, and bots, has been recognized as one of the
major security threats in the Internet environment, and a large amount of research and …
major security threats in the Internet environment, and a large amount of research and …
Practical correlation analysis between scan and malware profiles against zero-day attacks based on darknet monitoring
Considering rapid increase of recent highly organized and sophisticated malwares, practical
solutions for the countermeasures against malwares especially related to zero-day attacks …
solutions for the countermeasures against malwares especially related to zero-day attacks …
Detection of botnet activities through the lens of a large-scale darknet
The growing cyber-threats from botnets compel us to devise proper countermeasures to
detect infected hosts in an efficient and timely manner. In this paper, botnet-host …
detect infected hosts in an efficient and timely manner. In this paper, botnet-host …
Nicter: A large-scale network incident analysis system: Case studies for understanding threat landscape
We have been developing the Network Incident analysis Center for Tactical Emergency
Response (nicter), whose objective is to detect and identify propagating malwares. The …
Response (nicter), whose objective is to detect and identify propagating malwares. The …
An incident analysis system NICTER and its analysis engines based on data mining techniques
Malwares are spread all over cyberspace and often lead to serious security incidents. To
grasp the present trends of malware activities, there are a number of ongoing network …
grasp the present trends of malware activities, there are a number of ongoing network …
A novel malware clustering method using frequency of function call traces in parallel threads
With the rapid development and proliferation of the Internet, cyber attacks are increasingly
and continually emerging and evolving nowadays. Malware–a generic term for computer …
and continually emerging and evolving nowadays. Malware–a generic term for computer …
Behavior analysis of long-term cyber attacks in the darknet
Darknet monitoring provides us an effective way to countermeasure cyber attacks that pose
a significant threat to network security and management. This paper aims to characterize the …
a significant threat to network security and management. This paper aims to characterize the …