Towards a Reliable and Automated Analysis of Compromised Systems

In the Land of MMUs: Multiarchitecture OS-Agnostic Virtual Memory Forensics

Auteurs: Andrea Oliveri, Davide Balzarotti
Publié dans: ACM Transactions on Privacy and Security, Numéro Volume 25Numéro 4, 2022, ISSN 2471-2574
Éditeur: ACM

AUTOPROFILE: TOWARDS AUTOMATED PROFILE GENERATION FOR MEMORY ANALYSIS

Auteurs: Fabio Pagani, Davide Balzarotti
Publié dans: ACM Transactions on Privacy and Security (TOPS), Numéro Volume 25 Numéro 1, 2022, ISSN 2471-2566
Éditeur: ACM
DOI: 10.1145/3485471

A Comparison of Systemic and Systematic Risks of Malware Encounters in Consumer and Enterprise Environments

Auteurs: Savino Dambra, Leyla Bilge, Davide Balzarotti
Publié dans: ACM Transactions on Privacy and Security, 2022, ISSN 2471-2566
Éditeur: ACM

The evidence beyond the wall: Memory forensics in SGX environments

Auteurs: Flavio Toffalini, Andrea Oliveri, Mariano Graziano, Jianying Zhou, Davide Balzarotti
Publié dans: Elsevier Forensic Science International: Digital Investigation, 2021, ISSN 2666-2817
Éditeur: Elsevier

Pre-processing Memory Dumps to Improve Similarity Score of Windows Modules

Auteurs: Miguel Martín-Pérez, Ricardo J.Rodríguez, Davide Balzarotti
Publié dans: Elsevier Computers & Security, 2021, ISSN 0167-4048
Éditeur: Pergamon Press Ltd.
DOI: 10.1016/j.cose.2020.102119

Introducing the Temporal Dimension to Memory Forensics

Auteurs: Fabio Pagani, Oleksii Fedorov, Davide Balzarotti
Publié dans: ACM Transactions on Privacy and Security, Numéro 22/2, 2019, Page(s) 1-21, ISSN 2471-2566
Éditeur: ACM
DOI: 10.1145/3310355

A Close Look at a Daily Dataset of Malware Samples

Auteurs: Xabier Ugarte-Pedrero, Mariano Graziano, Davide Balzarotti
Publié dans: ACM Transactions on Privacy and Security, Numéro 22/1, 2019, Page(s) 1-30, ISSN 2471-2566
Éditeur: ACM
DOI: 10.1145/3291061

The Tangled Genealogy of IoT Malware

Auteurs: Emanuele Cozzi, Pierre-antoine Vervier, Matteo dell'Amico, Leyla Bilge, Davide Balzarotti
Publié dans: Proceedings of the Annual Computer Security Applications Conference (ACSAC), Numéro 2020, 2020
Éditeur: ACM

An OS-agnostic Approach to Memory Forensics

Auteurs: Andrea Oliveri, Matteo Dell'Amico, Davide Balzarotti
Publié dans: Network and Distributed System Security (NDSS) Symposium, Numéro 2023, 2023, ISBN 1-891562-83-5
Éditeur: ISOC
DOI: 10.14722/ndss.2023.23398

Decoding the Secrets of Machine Learning in Malware Classification: A Deep Dive into Datasets, Feature Extraction, and Model Performance

Auteurs: Savino Dambra, Yufei Han, Simone Aonzo, Platon Kotzias, Antonino Vitale, Juan Caballero, Davide Balzarotti, Leyla Bilge
Publié dans: ACM conference on Computer and communications security (CCS), Numéro 11/2023, 2023
Éditeur: ACM

How Machine Learning Is Solving the Binary Function Similarity Problem

Auteurs: Andrea Marcelli, Mariano Graziano, Xabier Ugarte-Pedrero, Yanick Fratantonio, Mohamad Mansouri, Davide Balzarotti
Publié dans: USENIX Security Symposium, 2022
Éditeur: Usenix

When Malware Changed Its Mind: An Empirical Study of Variable Program Behaviors in the Real World

Auteurs: Erin Avllazagaj, Ziyun Zhu, Leyla Bilge, Davide Balzarotti, Tudor Dumitras
Publié dans: USENIX Security Symposium, Numéro 30th, 2021
Éditeur: Usenix

RE-Mind: a First Look Inside the Mind of a Reverse Engineer

Auteurs: Alessandro Mantovani, Simone Aonzo, Yanick Fratantonio, Davide Balzarotti
Publié dans: USENIX Security Symposium, 2022
Éditeur: Usenix

Lost in the Loader: The Many Faces of the Windows PE File Format

Auteurs: Dario Nisi, Mariano Graziano, Yanick Fratantonio, Davide Balzarotti
Publié dans: 24th International Symposium on Research in Attacks, Intrusions and Defenses, 2021
Éditeur: ACM
DOI: 10.1145/3471621.3471848

SoK: Cyber Insurance – Technical Challenges and a System Security Roadmap

Auteurs: Savino Dambra, Leyla Bilge, Davide Balzarotti
Publié dans: 2020 IEEE Symposium on Security and Privacy (SP), Numéro 2020, 2020, Page(s) 1367-1383, ISBN 978-1-7281-3497-0
Éditeur: IEEE
DOI: 10.1109/sp40000.2020.00019

When Malware is Packin' Heat; Limits of Machine Learning Classifiers Based on Static Analysis Features

Auteurs: Hojjat Aghakhani, Fabio Gritti, Francesco Mecca, Martina Lindorfer, Stefano Ortolani, Davide Balzarotti, Giovanni Vigna, Christopher Kruegel
Publié dans: Proceedings 2020 Network and Distributed System Security Symposium, 2020, ISBN 1-891562-61-4
Éditeur: Internet Society
DOI: 10.14722/ndss.2020.24310

Does Every Second Count? Time-based Evolution of Malware Behavior in Sandboxes

Auteurs: Alexander Küchler, Alessandro Mantovani, Yufei Han, Leyla Bilge, Davide Balzarotti
Publié dans: Network and Distributed System Security (NDSS) Symposium, 2021
Éditeur: Internet Society

Prevalence and Impact of Low-Entropy Packing Schemes in the Malware Ecosystem

Auteurs: Alessandro Mantovani, Simone Aonzo, Xabier Ugarte-Pedrero, Alessio Merlo, Davide Balzarotti
Publié dans: Proceedings 2020 Network and Distributed System Security Symposium, 2020, ISBN 1-891562-61-4
Éditeur: Internet Society
DOI: 10.14722/ndss.2020.24297

Back to the Whiteboard: a Principled Approach for the Assessment and Design of Memory Forensic Techniques

Auteurs: Fabio Pagani, Davide Balzarotti
Publié dans: Proceedings of the 28th USENIX Conference on Security Symposium, Numéro 2019, 2019, Page(s) 1751-1768, ISBN 978-1-939133-06-9
Éditeur: USENIX Association Berkeley

Trust, But Verify: A Longitudinal Analysis Of Android OEM Compliance and Customization

Auteurs: Andrea Possemato, Simone Aonzo, Davide Balzarotti, Yanick Fratantonio
Publié dans: IEEE Symposium on Security and Privacy, Numéro 2022, 2022
Éditeur: IEEE
DOI: 10.1109/sp40001.2021.00074

Humans vs. Machines in Malware Classification

Auteurs: Simone Aonzo, Yufei Han,Alessandro Mantovani, Davide Balzarotti
Publié dans: Usenix Security Symposium, Numéro 2023, 2023, ISBN 978-1-939133-37-3
Éditeur: Usenix