Cargando…
Malware data science : attack detection and attribution /
Malware Data Science explains how to identify, analyze, and classify large-scale malware using machine learning and data visualization. Security has become a "big data" problem. The growth rate of malware has accelerated to tens of millions of new files per year while our networks generate...
| Clasificación: | Libro Electrónico |
|---|---|
| Autores principales: | , |
| Formato: | Electrónico eBook |
| Idioma: | Inglés |
| Publicado: |
San Francisco, CA :
No Starch Press,
[2018]
|
| Temas: | |
| Acceso en línea: | Texto completo (Requiere registro previo con correo institucional) |
MARC
| LEADER | 00000cam a2200000 i 4500 | ||
|---|---|---|---|
| 001 | OR_on1052786063 | ||
| 003 | OCoLC | ||
| 005 | 20231017213018.0 | ||
| 006 | m o d | ||
| 007 | cr unu|||||||| | ||
| 008 | 180918s2018 caua o 001 0 eng d | ||
| 040 | |a UMI |b eng |e rda |e pn |c UMI |d RECBK |d OCLCF |d STF |d EBLCP |d CEF |d TEFOD |d G3B |d MERUC |d UAB |d N$T |d YDXIT |d NRC |d K6U |d UKAHL |d OCLCQ |d VT2 |d CZL |d OCLCQ |d OCLCO |d OCLCQ |d OCLCO | ||
| 019 | |a 1202541345 |a 1235828250 |a 1240514214 |a 1244442852 |a 1298596811 | ||
| 020 | |a 9781593278601 |q (electronic book) | ||
| 020 | |a 1593278608 |q (electronic book) | ||
| 020 | |a 1593278594 |q (Trade Paper) | ||
| 020 | |a 9781593278595 | ||
| 020 | |z 9781593278595 | ||
| 024 | 3 | |a 9781593278595 | |
| 029 | 1 | |a AU@ |b 000065065919 | |
| 029 | 1 | |a AU@ |b 000065330271 | |
| 029 | 1 | |a CHNEW |b 001028403 | |
| 029 | 1 | |a CHVBK |b 551237937 | |
| 035 | |a (OCoLC)1052786063 |z (OCoLC)1202541345 |z (OCoLC)1235828250 |z (OCoLC)1240514214 |z (OCoLC)1244442852 |z (OCoLC)1298596811 | ||
| 037 | |a CL0500000992 |b Safari Books Online | ||
| 037 | |a 1F27EC2A-DB61-434D-B1BF-2C6D1A97EFCF |b OverDrive, Inc. |n http://www.overdrive.com | ||
| 050 | 4 | |a QA76.76.C68 |b S29 2018 | |
| 072 | 7 | |a COM |x 015000 |2 bisacsh | |
| 082 | 0 | 4 | |a 005.8/8 |2 23 |
| 049 | |a UAMI | ||
| 100 | 1 | |a Saxe, Joshua, |e author. | |
| 245 | 1 | 0 | |a Malware data science : |b attack detection and attribution / |c by Joshua Saxe with Hillary Sanders. |
| 264 | 1 | |a San Francisco, CA : |b No Starch Press, |c [2018] | |
| 300 | |a 1 online resource : |b illustrations | ||
| 336 | |a text |b txt |2 rdacontent | ||
| 337 | |a computer |b c |2 rdamedia | ||
| 338 | |a online resource |b cr |2 rdacarrier | ||
| 500 | |a Includes index. | ||
| 520 | |a Malware Data Science explains how to identify, analyze, and classify large-scale malware using machine learning and data visualization. Security has become a "big data" problem. The growth rate of malware has accelerated to tens of millions of new files per year while our networks generate an ever-larger flood of security-relevant data each day. In order to defend against these advanced attacks, you'll need to know how to think like a data scientist. In Malware Data Science, security data scientist Joshua Saxe introduces machine learning, statistics, social network analysis, and data visualization, and shows you how to apply these methods to malware detection and analysis. You'll learn how to: - Analyze malware using static analysis - Observe malware behavior using dynamic analysis - Identify adversary groups through shared code analysis - Catch 0-day vulnerabilities by building your own machine learning detector - Measure malware detector accuracy - Identify malware campaigns, trends, and relationships through data visualization Whether you're a malware analyst looking to add skills to your existing arsenal, or a data scientist interested in attack detection and threat intelligence, Malware Data Science will help you stay ahead of the curve | ||
| 588 | 0 | |a Online resource; title from digital title page (viewed on March 27, 2019). | |
| 505 | 0 | |a Intro -- Title Page -- Copyright Page -- Dedication -- About the Authors -- About the Technical Reviewer -- BRIEF CONTENTS -- CONTENTS IN DETAIL -- FOREWORD by Anup Ghosh -- ACKNOWLEDGMENTS -- INTRODUCTION -- What Is Data Science? -- Why Data Science Matters for Security -- Applying Data Science to Malware -- Who Should Read This Book? -- About This Book -- How to Use the Sample Code and Data -- 1 BASIC STATIC MALWARE ANALYSIS -- The Microsoft Windows Portable Executable Format -- Dissecting the PE Format Using pefile -- Examining Malware Images -- Examining Malware Strings -- Summary -- 2 BEYOND BASIC STATIC ANALYSIS: X86 DISASSEMBLY -- Disassembly Methods -- Basics of x86 Assembly Language -- Disassembling ircbot.exe Using pefile and capstone -- Factors That Limit Static Analysis -- Summary -- 3 A BRIEF INTRODUCTION TO DYNAMIC ANALYSIS -- Why Use Dynamic Analysis? -- Dynamic Analysis for Malware Data Science -- Basic Tools for Dynamic Analysis -- Limitations of Basic Dynamic Analysis -- Summary -- 4 IDENTIFYING ATTACK CAMPAIGNS USING MALWARE NETWORKS -- Nodes and Edges -- Bipartite Networks -- Visualizing Malware Networks -- Building Networks with NetworkX -- Adding Nodes and Edges -- Network Visualization with GraphViz -- Building Malware Networks -- Building a Shared Image Relationship Network -- Summary -- 5 SHARED CODE ANALYSIS -- Preparing Samples for Comparison by Extracting Features -- Using the Jaccard Index to Quantify Similarity -- Using Similarity Matrices to Evaluate Malware Shared Code Estimation Methods -- Building a Similarity Graph -- Scaling Similarity Comparisons -- Building a Persistent Malware Similarity Search System -- Running the Similarity Search System -- Summary -- 6 UNDERSTANDING MACHINE LEARNING-BASED MALWARE DETECTORS -- Steps for Building a Machine Learning-Based Detector. | |
| 505 | 8 | |a Understanding Feature Spaces and Decision Boundaries -- What Makes Models Good or Bad: Overfitting and Underfitting -- Major Types of Machine Learning Algorithms -- Summary -- 7 EVALUATING MALWARE DETECTION SYSTEMS -- Four Possible Detection Outcomes -- Considering Base Rates in Your Evaluation -- Summary -- 8 BUILDING MACHINE LEARNING DETECTORS -- Terminology and Concepts -- Building a Toy Decision Tree-Based Detector -- Building Real-World Machine Learning Detectors with sklearn -- Building an Industrial-Strength Detector -- Evaluating Your Detector's Performance -- Next Steps -- Summary -- 9 VISUALIZING MALWARE TRENDS -- Why Visualizing Malware Data Is Important -- Understanding Our Malware Dataset -- Using matplotlib to Visualize Data -- Using seaborn to Visualize Data -- Summary -- 10 DEEP LEARNING BASICS -- What Is Deep Learning? -- How Neural Networks Work -- Training Neural Networks -- Types of Neural Networks -- Summary -- 11 BUILDING A NEURAL NETWORK MALWARE DETECTOR WITH KERAS -- Defining a Model's Architecture -- Compiling the Model -- Training the Model -- Evaluating the Model -- Enhancing the Model Training Process with Callbacks -- Summary -- 12 BECOMING A DATA SCIENTIST -- Paths to Becoming a Security Data Scientist -- A Day in the Life of a Security Data Scientist -- Traits of an Effective Security Data Scientist -- Where to Go from Here -- APPENDIX AN OVERVIEW OF DATASETS AND TOOLS -- Overview of Datasets -- Tool Implementation Guide -- Index. | |
| 590 | |a O'Reilly |b O'Reilly Online Learning: Academic/Public Library Edition | ||
| 650 | 0 | |a Malware (Computer software) | |
| 650 | 0 | |a Computer viruses. | |
| 650 | 0 | |a Debugging in computer science. | |
| 650 | 0 | |a Computer security. | |
| 650 | 2 | |a Computer Security | |
| 650 | 6 | |a Logiciels malveillants. | |
| 650 | 6 | |a Virus informatiques. | |
| 650 | 6 | |a Débogage. | |
| 650 | 6 | |a Sécurité informatique. | |
| 650 | 7 | |a COMPUTERS |x Security |x Viruses & Malware. |2 bisacsh | |
| 650 | 7 | |a Computer security |2 fast | |
| 650 | 7 | |a Computer viruses |2 fast | |
| 650 | 7 | |a Debugging in computer science |2 fast | |
| 650 | 7 | |a Malware (Computer software) |2 fast | |
| 700 | 1 | |a Sanders, Hillary, |e author. | |
| 776 | 0 | 8 | |i Print version: |a Saxe, Joshua. |t Malware data science. |d San Francisco, CA : No Starch Press, [2018] |w (DLC) 2018949204 |
| 856 | 4 | 0 | |u https://learning.oreilly.com/library/view/~/9781492067672/?ar |z Texto completo (Requiere registro previo con correo institucional) |
| 938 | |a Askews and Holts Library Services |b ASKH |n AH35097996 | ||
| 938 | |a ProQuest Ebook Central |b EBLB |n EBL6059951 | ||
| 938 | |a EBSCOhost |b EBSC |n 1647344 | ||
| 938 | |a Recorded Books, LLC |b RECE |n rbeEB00716495 | ||
| 994 | |a 92 |b IZTAP | ||