Abstract

Techniques are described herein for convicting malicious actors across datasets of different origins. The algorithm allows correlation of the available ground truth knowledge from one dataset with observations in another dataset. In the network/endpoint security field this algorithm allows for conviction of malicious network traffic and identification of Command and Control infrastructure of newly detected malware, even if no direct communication between binaries and domains is observed.

Creative Commons License

This work is licensed under a Creative Commons Attribution 4.0 License.

Recommended Citation

Jusko, Jan and Khikhlukha, Danila, "CROSS-DATASET MALICIOUS ACTORS IDENTIFICATION", Technical Disclosure Commons, (February 20, 2019)
https://www.tdcommons.org/dpubs_series/1966

Download

COinS

Technical Disclosure Commons

Defensive Publications Series

CROSS-DATASET MALICIOUS ACTORS IDENTIFICATION

Abstract

Creative Commons License

Recommended Citation

Browse

Search

Submit

Additional Information

Technical Disclosure Commons

Defensive Publications Series

CROSS-DATASET MALICIOUS ACTORS IDENTIFICATION

Inventor(s)

Abstract

Creative Commons License

Recommended Citation

Share

Browse

Search

Submit

Additional Information