Biondi, Fabrizio
Déchelle, François
Legay, Axel
[UCL]
We present the MASSE architecture, a YARA-based open source client-server malware detection platform. MASSE includes highly effective automated syntactic malware detection rule generation for the clients based on a server-side modular malware detection system. Multiple techniques are used to make MASSE effective at detecting malware while keeping it from disrupting users and hindering reverse-engineering of its malware analysis by malware creators.
Bibliographic reference |
Biondi, Fabrizio ; Déchelle, François ; Legay, Axel. MASSE: Modular Automated Syntactic Signature Extraction.ISSRE 2017 - The 28th International Symposium on Software Reliability Engineering - IEEE (du 23/10/2017 au 26/10/2017). |
Permanent URL |
https://hdl.handle.net/2078.1/210517 |