loading
Papers Papers/2022 Papers Papers/2022

Research.Publish.Connect.

Paper

Authors: Tiberiu Boros 1 ; Andrei Cotaie 1 ; Antrei Stan 1 ; Kumar Vikramjeet 2 ; Vivek Malik 2 and Joseph Davidson 2

Affiliations: 1 Adobe Systems, Romania ; 2 Adobe Systems, U.S.A.

Keyword(s): Machine Learning, Living-off-the-Land (LotL), Feature Engineering, Artificial Intelligence, Random Forest, Commands, CommandLine, OpenSource, Linux.

Abstract: Among the methods used by attackers to avoid detection, living off the land is particularly hard to detect. One of the main reasons is the thin line between what is actually operational/admin activity and what is malicious activity. Also, as shown by other research, this type of attack detection is underrepresented in Anti-Virus (AV) software, mainly because of the high risk of false positives. Our research focuses on detecting this type of attack through the use of machine learning. We greatly reduce the number of false detection by corpora design and specialized feature engineering which brings in-domain human expert knowledge. Our code is open-source and we provide pre-trained models.

CC BY-NC-ND 4.0

Sign In Guest: Register as new SciTePress user now for free.

Sign In SciTePress user: please login.

PDF ImageMy Papers

You are not signed in, therefore limits apply to your IP address 34.228.213.183

In the current month:
Recent papers: 100 available of 100 total
2+ years older papers: 200 available of 200 total

Paper citation in several formats:
Boros, T.; Cotaie, A.; Stan, A.; Vikramjeet, K.; Malik, V. and Davidson, J. (2022). Machine Learning and Feature Engineering for Detecting Living off the Land Attacks. In Proceedings of the 7th International Conference on Internet of Things, Big Data and Security - IoTBDS; ISBN 978-989-758-564-7; ISSN 2184-4976, SciTePress, pages 133-140. DOI: 10.5220/0011004500003194

@conference{iotbds22,
author={Tiberiu Boros. and Andrei Cotaie. and Antrei Stan. and Kumar Vikramjeet. and Vivek Malik. and Joseph Davidson.},
title={Machine Learning and Feature Engineering for Detecting Living off the Land Attacks},
booktitle={Proceedings of the 7th International Conference on Internet of Things, Big Data and Security - IoTBDS},
year={2022},
pages={133-140},
publisher={SciTePress},
organization={INSTICC},
doi={10.5220/0011004500003194},
isbn={978-989-758-564-7},
issn={2184-4976},
}

TY - CONF

JO - Proceedings of the 7th International Conference on Internet of Things, Big Data and Security - IoTBDS
TI - Machine Learning and Feature Engineering for Detecting Living off the Land Attacks
SN - 978-989-758-564-7
IS - 2184-4976
AU - Boros, T.
AU - Cotaie, A.
AU - Stan, A.
AU - Vikramjeet, K.
AU - Malik, V.
AU - Davidson, J.
PY - 2022
SP - 133
EP - 140
DO - 10.5220/0011004500003194
PB - SciTePress