scalable web object inspec0on and malfease collec0on
play

Scalable Web Object Inspec0on and Malfease Collec0on Charalampos - PowerPoint PPT Presentation

Apr 12, 2023 •963 likes •1.08k views

Scalable Web Object Inspec0on and Malfease Collec0on Charalampos Andrianakis Paul Seymer Angelos Stavrou The Problem Driveby download aEacks infect thousands of computers daily Millions of URLs spread the aEacks Current

  1. Scalable Web Object Inspec0on and Malfease Collec0on Charalampos Andrianakis Paul Seymer Angelos Stavrou

  2. The Problem • Drive‐by download aEacks infect thousands of computers daily • Millions of URLs spread the aEacks • Current technologies based on full system virtualiza0on can’t scale

  3. Our Solu0on • A URL analysis framework using lightweight virtualiza0on and a modified WINE engine – Scans thousands of URLs in parallel – Minimizes resource consump0on (VM uses less than 300MB of disk, 3MB of memory) – Extracts the offending payload and use it for further analysis

  4. Framework Architecture

  5. Framework Architecture • OpenVZ containers with Debian Linux and WINE • Execute Internet Explorer inside WINE and visit malicious URL • NOP Sled detector inside WINE detects the aEack (heap spray) and extracts the payload

  6. Framework Architecture • The payload is executed inside WINE with the payload loader • Malware contacts a remote server and downloads zero day malware binaries

  7. Framework Architecture

  8. Scalability

  9. Scalability

  10. Limita0ons • Our solu0on is limited to detec0ng heap spray aEacks only • If the offending payload references func0ons or data in the address space of the browser it can evade detec0on

  11. Ques0ons ? Thank you!

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Scalable Object Storage with Resource Reservations and Dynamic Load Balancing Alex Aizman

Scalable Object Storage with Resource Reservations and Dynamic Load Balancing Alex Aizman

Scalable Object Storage with Resource Reservations and Dynamic Load Balancing Alex Aizman Nexenta Systems The Setup Within Data Center Scale: 100+ nodes to unlimited Optimized for latency; no spikes at high utilization No fat

591 views • 17 slides
Towards a Unified Object Storage Foundation for Scalable Storage Systems Authors: Cengiz

Towards a Unified Object Storage Foundation for Scalable Storage Systems Authors: Cengiz

Towards a Unified Object Storage Foundation for Scalable Storage Systems Authors: Cengiz Karakoyunlu, Dries Kimpe, Philip Carns, Kevin Harms, Robert Ross, Lee Ward Presenter: Cengiz Karakoyunlu cengiz.k@uconn.edu September 27, 2013 What is

393 views • 22 slides
VoroNet: A scalable object network based on Voronoi tessellations Olivier Beaumont, Anne-Marie

VoroNet: A scalable object network based on Voronoi tessellations Olivier Beaumont, Anne-Marie

VoroNet: A scalable object network based on Voronoi tessellations Olivier Beaumont, Anne-Marie Kermarrec, Loris Marchal and Etienne Rivi` ere SCALAPPLIX project, LaBRI (Bordeaux) PARIS project, IRISA (Rennes) GRAAL project, LIP, ENS Lyon

891 views • 73 slides
Object Oriented Object 3 Programming Object 1 Object 2 Object 4 For : COP 3330. Object

Object Oriented Object 3 Programming Object 1 Object 2 Object 4 For : COP 3330. Object

4/13/2017 OOP Object Oriented Object 3 Programming Object 1 Object 2 Object 4 For : COP 3330. Object oriented Programming (Using C++) ht t p: / / www. com pgeom . com / ~pi yush/ t each/ 3330 Objects: State (fields), Behavior (member

632 views • 6 slides
Scalable String Matching on the Scalable String Matching on the Scalable String Matching on the

Scalable String Matching on the Scalable String Matching on the Scalable String Matching on the

Scalable String Matching on the Scalable String Matching on the Scalable String Matching on the Cell BE Processor BE Processor Cell Cell BE Processor Daniele Scarpazza, Oreste Villa, Fabrizio Petrini Applied Computer Science Group Pacific

408 views • 21 slides
Cache Coherence in Scalable Machines Scalable Cache Coherent Systems Scalable, distributed

Cache Coherence in Scalable Machines Scalable Cache Coherent Systems Scalable, distributed

Cache Coherence in Scalable Machines Scalable Cache Coherent Systems Scalable, distributed memory plus coherent replication Scalable distributed memory machines P-C-M nodes connected by network communication assist interprets

1.13k views • 87 slides
Specifying Interfaces Object Design: Chapter 9, Object Design ! Object design is the process of

Specifying Interfaces Object Design: Chapter 9, Object Design ! Object design is the process of

Object-Oriented Software Engineering Using UML, Patterns, and Java Specifying Interfaces Object Design: Chapter 9, Object Design ! Object design is the process of adding details to the requirements analysis and making implementation decisions

500 views • 28 slides
The Scalable Commutativity Rule: Designing Scalable Software for Multicore Processors Austin T.

The Scalable Commutativity Rule: Designing Scalable Software for Multicore Processors Austin T.

The Scalable Commutativity Rule: Designing Scalable Software for Multicore Processors Austin T. Clements M. Frans Kaashoek Nickolai Zeldovich Robert Morris Eddie Kohler MIT CSAIL and Harvard Current approach to scalable software

1.48k views • 55 slides
Object-Oriented Databases Object Oriented Databases ODMG Standard Object Model, Object

Object-Oriented Databases Object Oriented Databases ODMG Standard Object Model, Object

Object-Oriented Databases Object Oriented Databases ODMG Standard Object Model, Object Definition Language, Object Query Language Programming Language Bindings Outlook October 17, 2008 Michael Grossniklaus Department of

786 views • 27 slides
Object-Oriented Paradigm http://cs.mst.edu The Concept Bundled together in one object

Object-Oriented Paradigm http://cs.mst.edu The Concept Bundled together in one object

Object-Oriented Paradigm http://cs.mst.edu The Concept Bundled together in one object Data Types Functionality Encapsulation State variables used to describe the object Functions dictating how the object interacts and

230 views • 18 slides
Lightcuts: A Scalable Lightcuts: A Scalable Approach to Illumination Approach to Illumination

Lightcuts: A Scalable Lightcuts: A Scalable Approach to Illumination Approach to Illumination

Lightcuts: A Scalable Lightcuts: A Scalable Approach to Illumination Approach to Illumination Bruce Walter, Sebastian Fernandez, Adam Arbree, Mike Donikian, Kavita Bala, Donald Greenberg Program of Computer Graphics, Cornell University

715 views • 70 slides
Limitlessly Scalable Storage for Capacity-Intensive Computing Meet Cloudian S3-compatible

Limitlessly Scalable Storage for Capacity-Intensive Computing Meet Cloudian S3-compatible

Limitlessly Scalable Storage for Capacity-Intensive Computing Meet Cloudian S3-compatible object storage Appliances and Software-defined Storage Start small, scale to over an exabyte Hybrid cloud and multi-cloud ready 2 See

257 views • 7 slides
Chapter 8, Object Design: Object design is the process of adding details to the requirements

Chapter 8, Object Design: Object design is the process of adding details to the requirements

Object Design Object-Oriented Software Engineering Chapter 8, Object Design: Object design is the process of adding details to the requirements analysis and making implementation decisions Reuse and Patterns I The object designer must

301 views • 15 slides
Outline Object-orientation and databases CS 235: Object-oriented model: ODL Object

Outline Object-orientation and databases CS 235: Object-oriented model: ODL Object

Outline Object-orientation and databases CS 235: Object-oriented model: ODL Object Query Language Introduction to Databases Svetlozar Nestorov Lecture Notes #15 CS 235: Introduction to Databases 2 Object-Oriented DBMSs ODMG

550 views • 8 slides
Mul$-Object Synchroniza$on Mul$-Object Programs What happens

Mul$-Object Synchroniza$on Mul$-Object Programs What happens

Mul$-Object Synchroniza$on Mul$-Object Programs What happens when we try to synchronize across mul$ple objects in a large program? Each object

1.14k views • 47 slides
Mul$-Object Synchroniza$on Mul$-Object Programs What happens

Mul$-Object Synchroniza$on Mul$-Object Programs What happens

Mul$-Object Synchroniza$on Mul$-Object Programs What happens when we try to synchronize across mul$ple objects in a large program? Each object

607 views • 31 slides
W orldwide I ntelligence N etwork E nvironment (WINE) Symantec s Data

W orldwide I ntelligence N etwork E nvironment (WINE) Symantec s Data

W orldwide I ntelligence N etwork E nvironment (WINE) Symantec s Data Sharing Program Darren Shou and Tudor Dumitra Symantec Research Labs Goals of WINE

168 views • 14 slides
10 Credit Bundle Save up to 40% on report purchases Select from any type of report available:

10 Credit Bundle Save up to 40% on report purchases Select from any type of report available:

WINE INTELLIGENCE REPORTS SHOP 10 Credit Bundle Save up to 40% on report purchases Select from any type of report available: We see great Landscape Reports value in Wine Intelligence reports. The Landscape reports A comprehensive view

518 views • 4 slides
CSE 158/258 Web Mining and Recommender Systems Assignment 2 Assignment 2 Open-ended Due

CSE 158/258 Web Mining and Recommender Systems Assignment 2 Assignment 2 Open-ended Due

CSE 158/258 Web Mining and Recommender Systems Assignment 2 Assignment 2 Open-ended Due Dec 3 (Tuesday) Submissions should be made via gradescope Assignment 2 Basic tasks: 1. Identify a dataset to study and describe its

670 views • 43 slides
The Value of Working With Wine Bloggers Panelists : Ilona Thompson, CWAS www.Palatexposure.com

The Value of Working With Wine Bloggers Panelists : Ilona Thompson, CWAS www.Palatexposure.com

The Value of Working With Wine Bloggers Panelists : Ilona Thompson, CWAS www.Palatexposure.com Miki Finnin www.TheVineyardTrail.com Moderator : Jason Stubblefield (Stub) www.CorkEnvy.com Overview Intro of Panelists Who Blogs About

711 views • 27 slides
PHPE 4000 Individual and Group Decision Making Eric Pacuit University of Maryland pacuit.org 1

PHPE 4000 Individual and Group Decision Making Eric Pacuit University of Maryland pacuit.org 1

PHPE 4000 Individual and Group Decision Making Eric Pacuit University of Maryland pacuit.org 1 / 11 Beliefs: How should we represent the decision makers beliefs about the decision problems (e.g., the available outcomes, menu items,

1.06k views • 37 slides
- the options must be thoroughly compared to each other; - the decision-maker must use a

- the options must be thoroughly compared to each other; - the decision-maker must use a

A PPLIED V OCATIONAL P SYCHOLOGY AND P OLICY R ESEARCH U NIT They preach water and drink wine. or The Unbearable Lightness of Rational Decision-Making Models in Career Counselling. AIOSP/IAEVG International Conference University of

928 views • 7 slides
Information Retrieval > Query Us User er Query Words Query Words Search Personalization

Information Retrieval > Query Us User er Query Words Query Words Search Personalization

Information Retrieval > Query Us User er Query Words Query Words Search Personalization Cont ntex ext Ranked List Ranked List Domain Dom Jaime Teevan Cont ntex ext Microsoft Research Ta Task/ sk/Use Use Cont ntex ext

250 views • 7 slides
The Big Project Aws Albarghouthi Calvin Smith University of Wisconsin-Madison input data

The Big Project Aws Albarghouthi Calvin Smith University of Wisconsin-Madison input data

The Big Project Aws Albarghouthi Calvin Smith University of Wisconsin-Madison input data map shu ffl e reduce output data m(i 1 ) i 1 reduce i 2 m(i 2 ) reduce output i 3 reduce m(i 3 ) Big : Analyses from Examples [PLDI16]

542 views • 29 slides

More recommend