TIGP (SNHCC)--Malicious Behavior Discovery with Open Source Intelligence and Obfuscation Resilience
- LecturerProf. Yi-Ting Huang (Department of Electrical Engineering, National Taiwan University of Science and Technology)
Host: TIGP (SNHCC) - Time2022-12-26 (Mon.) 14:00 ~ 16:00
- LocationAuditorium 106 at IIS new Building
Abstract
Cyber threats are one of the most pressing issues in the digital age. There has been a consensus on deploying a proactive defense to effectively detect and respond to adversary threats. The key to success is understanding the characteristics of malware, including their activities and manipulated resources on the target machines. In this talk, I will share my experience in malware behavior analysis (MAMBA) using MITRE ATT&CK framework, and introduce two ongoing work on extending MAMBA for withstanding obfuscated behaviors and API locating.