Towards a Reliable and Automated Analysis of Compromised Systems

In the Land of MMUs: Multiarchitecture OS-Agnostic Virtual Memory Forensics

Autores: Andrea Oliveri, Davide Balzarotti
Publicado en: ACM Transactions on Privacy and Security, Edición Volume 25Edición 4, 2022, ISSN 2471-2574
Editor: ACM

AUTOPROFILE: TOWARDS AUTOMATED PROFILE GENERATION FOR MEMORY ANALYSIS

Autores: Fabio Pagani, Davide Balzarotti
Publicado en: ACM Transactions on Privacy and Security (TOPS), Edición Volume 25 Edición 1, 2022, ISSN 2471-2566
Editor: ACM
DOI: 10.1145/3485471

A Comparison of Systemic and Systematic Risks of Malware Encounters in Consumer and Enterprise Environments

Autores: Savino Dambra, Leyla Bilge, Davide Balzarotti
Publicado en: ACM Transactions on Privacy and Security, 2022, ISSN 2471-2566
Editor: ACM

The evidence beyond the wall: Memory forensics in SGX environments

Autores: Flavio Toffalini, Andrea Oliveri, Mariano Graziano, Jianying Zhou, Davide Balzarotti
Publicado en: Elsevier Forensic Science International: Digital Investigation, 2021, ISSN 2666-2817
Editor: Elsevier

Pre-processing Memory Dumps to Improve Similarity Score of Windows Modules

Autores: Miguel Martín-Pérez, Ricardo J.Rodríguez, Davide Balzarotti
Publicado en: Elsevier Computers & Security, 2021, ISSN 0167-4048
Editor: Pergamon Press Ltd.
DOI: 10.1016/j.cose.2020.102119

Introducing the Temporal Dimension to Memory Forensics

Autores: Fabio Pagani, Oleksii Fedorov, Davide Balzarotti
Publicado en: ACM Transactions on Privacy and Security, Edición 22/2, 2019, Página(s) 1-21, ISSN 2471-2566
Editor: ACM
DOI: 10.1145/3310355

A Close Look at a Daily Dataset of Malware Samples

Autores: Xabier Ugarte-Pedrero, Mariano Graziano, Davide Balzarotti
Publicado en: ACM Transactions on Privacy and Security, Edición 22/1, 2019, Página(s) 1-30, ISSN 2471-2566
Editor: ACM
DOI: 10.1145/3291061

The Tangled Genealogy of IoT Malware

Autores: Emanuele Cozzi, Pierre-antoine Vervier, Matteo dell'Amico, Leyla Bilge, Davide Balzarotti
Publicado en: Proceedings of the Annual Computer Security Applications Conference (ACSAC), Edición 2020, 2020
Editor: ACM

An OS-agnostic Approach to Memory Forensics

Autores: Andrea Oliveri, Matteo Dell'Amico, Davide Balzarotti
Publicado en: Network and Distributed System Security (NDSS) Symposium, Edición 2023, 2023, ISBN 1-891562-83-5
Editor: ISOC
DOI: 10.14722/ndss.2023.23398

Decoding the Secrets of Machine Learning in Malware Classification: A Deep Dive into Datasets, Feature Extraction, and Model Performance

Autores: Savino Dambra, Yufei Han, Simone Aonzo, Platon Kotzias, Antonino Vitale, Juan Caballero, Davide Balzarotti, Leyla Bilge
Publicado en: ACM conference on Computer and communications security (CCS), Edición 11/2023, 2023
Editor: ACM

How Machine Learning Is Solving the Binary Function Similarity Problem

Autores: Andrea Marcelli, Mariano Graziano, Xabier Ugarte-Pedrero, Yanick Fratantonio, Mohamad Mansouri, Davide Balzarotti
Publicado en: USENIX Security Symposium, 2022
Editor: Usenix

When Malware Changed Its Mind: An Empirical Study of Variable Program Behaviors in the Real World

Autores: Erin Avllazagaj, Ziyun Zhu, Leyla Bilge, Davide Balzarotti, Tudor Dumitras
Publicado en: USENIX Security Symposium, Edición 30th, 2021
Editor: Usenix

RE-Mind: a First Look Inside the Mind of a Reverse Engineer

Autores: Alessandro Mantovani, Simone Aonzo, Yanick Fratantonio, Davide Balzarotti
Publicado en: USENIX Security Symposium, 2022
Editor: Usenix

Lost in the Loader: The Many Faces of the Windows PE File Format

Autores: Dario Nisi, Mariano Graziano, Yanick Fratantonio, Davide Balzarotti
Publicado en: 24th International Symposium on Research in Attacks, Intrusions and Defenses, 2021
Editor: ACM
DOI: 10.1145/3471621.3471848

SoK: Cyber Insurance – Technical Challenges and a System Security Roadmap

Autores: Savino Dambra, Leyla Bilge, Davide Balzarotti
Publicado en: 2020 IEEE Symposium on Security and Privacy (SP), Edición 2020, 2020, Página(s) 1367-1383, ISBN 978-1-7281-3497-0
Editor: IEEE
DOI: 10.1109/sp40000.2020.00019

When Malware is Packin' Heat; Limits of Machine Learning Classifiers Based on Static Analysis Features

Autores: Hojjat Aghakhani, Fabio Gritti, Francesco Mecca, Martina Lindorfer, Stefano Ortolani, Davide Balzarotti, Giovanni Vigna, Christopher Kruegel
Publicado en: Proceedings 2020 Network and Distributed System Security Symposium, 2020, ISBN 1-891562-61-4
Editor: Internet Society
DOI: 10.14722/ndss.2020.24310

Does Every Second Count? Time-based Evolution of Malware Behavior in Sandboxes

Autores: Alexander Küchler, Alessandro Mantovani, Yufei Han, Leyla Bilge, Davide Balzarotti
Publicado en: Network and Distributed System Security (NDSS) Symposium, 2021
Editor: Internet Society

Prevalence and Impact of Low-Entropy Packing Schemes in the Malware Ecosystem

Autores: Alessandro Mantovani, Simone Aonzo, Xabier Ugarte-Pedrero, Alessio Merlo, Davide Balzarotti
Publicado en: Proceedings 2020 Network and Distributed System Security Symposium, 2020, ISBN 1-891562-61-4
Editor: Internet Society
DOI: 10.14722/ndss.2020.24297

Back to the Whiteboard: a Principled Approach for the Assessment and Design of Memory Forensic Techniques

Autores: Fabio Pagani, Davide Balzarotti
Publicado en: Proceedings of the 28th USENIX Conference on Security Symposium, Edición 2019, 2019, Página(s) 1751-1768, ISBN 978-1-939133-06-9
Editor: USENIX Association Berkeley

Trust, But Verify: A Longitudinal Analysis Of Android OEM Compliance and Customization

Autores: Andrea Possemato, Simone Aonzo, Davide Balzarotti, Yanick Fratantonio
Publicado en: IEEE Symposium on Security and Privacy, Edición 2022, 2022
Editor: IEEE
DOI: 10.1109/sp40001.2021.00074

Humans vs. Machines in Malware Classification

Autores: Simone Aonzo, Yufei Han,Alessandro Mantovani, Davide Balzarotti
Publicado en: Usenix Security Symposium, Edición 2023, 2023, ISBN 978-1-939133-37-3
Editor: Usenix