Eliciting maliciousness: programs, exploit kits, and browser extensions
Prof. Giovanni Vigna
Department of Computer Science, University of California
DEIB - Conference Room
June 23rd, 2015
2.00 pm.
Contacts:
Carlo Ghezzi
Research Line:
Advanced software architectures and methodologies
Department of Computer Science, University of California
DEIB - Conference Room
June 23rd, 2015
2.00 pm.
Contacts:
Carlo Ghezzi
Research Line:
Advanced software architectures and methodologies
Sommario
Malware is in continuous evolution. As new analysis and detection techniques are deployed, cybercriminals adapt and create malware samples that can evade these defenses.
A new challenge in security is how to elicit malicious behavior so that it can be observed, analyzed, and detected.
In this talk, we will present techniques used to extract malicious behavior from programs, exploit kits, and malicious browser extensions.
A new challenge in security is how to elicit malicious behavior so that it can be observed, analyzed, and detected.
In this talk, we will present techniques used to extract malicious behavior from programs, exploit kits, and malicious browser extensions.
Biografia
Giovanni Vigna is a Professor in the Department of Computer Science at the University of California in Santa Barbara and the CTO of Lastline, Inc.
His current research interests include malware analysis, web security, vulnerability assessment, and mobile phone security. He has
been the Program Chair of the International Symposium on Recent Advances in Intrusion Detection (RAID 2003), of the ISOC Symposium on Network and Distributed Systems Security (NDSS 2009), and of the IEEE Symposium on Security and Privacy in 2011. He is known for organizing and running an inter-university Capture The Flag hacking contest, called iCTF, that every year involves dozens of institutions around the world.
His current research interests include malware analysis, web security, vulnerability assessment, and mobile phone security. He has
been the Program Chair of the International Symposium on Recent Advances in Intrusion Detection (RAID 2003), of the ISOC Symposium on Network and Distributed Systems Security (NDSS 2009), and of the IEEE Symposium on Security and Privacy in 2011. He is known for organizing and running an inter-university Capture The Flag hacking contest, called iCTF, that every year involves dozens of institutions around the world.