Machine Learning and Feature Engineering for Detecting Living off the Land Attacks

被引:0
|
作者
Boros, Tiberiu [1 ]
Cotaie, Andrei [1 ]
Stan, Antrei [1 ]
Vikramjeet, Kumar [2 ]
Malik, Vivek [2 ]
Davidson, Joseph [2 ]
机构
[1] Adobe Syst, Bucharest, Romania
[2] Adobe Syst, San Jose, CA USA
来源
PROCEEDINGS OF THE 7TH INTERNATIONAL CONFERENCE ON INTERNET OF THINGS, BIG DATA AND SECURITY (IOTBDS) | 2022年
关键词
Machine Learning; Living-off-the-Land (LotL); Feature Engineering; Artificial Intelligence; Random Forest; Commands; CommandLine; OpenSource; Linux;
D O I
10.5220/0011004500003194
中图分类号
TP301 [理论、方法];
学科分类号
081202 ;
摘要
Among the methods used by attackers to avoid detection, living off the land is particularly hard to detect. One of the main reasons is the thin line between what is actually operational/admin activity and what is malicious activity. Also, as shown by other research, this type of attack detection is underrepresented in Anti-Virus (AV) software, mainly because of the high risk of false positives. Our research focuses on detecting this type of attack through the use of machine learning. We greatly reduce the number of false detection by corpora design and specialized feature engineering which brings in-domain human expert knowledge. Our code is open-source and we provide pre-trained models.
引用
收藏
页码:133 / 140
页数:8
相关论文
共 50 条
  • [21] Feature engineering of machine-learning chemisorption models for catalyst design
    Li, Zheng
    Ma, Xianfeng
    Xin, Hongliang
    CATALYSIS TODAY, 2017, 280 : 232 - 238
  • [22] Preserving integrity in online assessment using feature engineering and machine learning
    Garg, Manika
    Goel, Anita
    EXPERT SYSTEMS WITH APPLICATIONS, 2023, 225
  • [23] Diabetes Prediction Using Machine Learning with Feature Engineering and Hyperparameter Tuning
    El Massari, Hakim
    Gherabi, Noreddine
    Qanouni, Fatima
    Mhammedi, Sajida
    INTERNATIONAL JOURNAL OF ADVANCED COMPUTER SCIENCE AND APPLICATIONS, 2024, 15 (08) : 171 - 179
  • [24] Machine Learning Enhanced by Feature Engineering for Estimating Snow Water Equivalent
    Cisty, Milan
    Danko, Michal
    Kohnova, Silvia
    Povazanova, Barbora
    Trizna, Andrej
    WATER, 2024, 16 (16)
  • [25] Effective Feature Engineering Technique for Heart Disease Prediction With Machine Learning
    Qadri, Azam Mehmood
    Raza, Ali
    Munir, Kashif
    Almutairi, Mubarak S.
    IEEE ACCESS, 2023, 11 : 56214 - 56224
  • [26] Feature engineering for condition monitoring of rolling bearings using machine learning
    Bienefeld C.
    Vogt A.
    Kacmar M.
    Kirchner E.
    Tribologie und Schmierungstechnik, 2021, 68 (06): : 5 - 11
  • [27] Deep Dive into Hunting for LotLs Using Machine Learning and Feature Engineering
    Boros, Tiberiu
    Cotaie, Andrei
    PROCEEDINGS OF THE 8TH INTERNATIONAL CONFERENCE ON INTERNET OF THINGS, BIG DATA AND SECURITY, IOTBDS 2023, 2023, : 194 - 199
  • [28] Feature engineering for machine learning enabled early prediction of battery lifetime
    Paulson, Noah H.
    Kubal, Joseph
    Ward, Logan
    Saxena, Saurabh
    Lu, Wenquan
    Babinec, Susan J.
    JOURNAL OF POWER SOURCES, 2022, 527
  • [29] A Machine Learning Approach for Detecting Spoofing Attacks in Wireless Sensor Networks
    de Lima Pinto, Eliel Marlon
    Lachowski, Rosana
    Pellenz, Marcelo E.
    Penna, Manoel C.
    Souza, Richard D.
    PROCEEDINGS 2018 IEEE 32ND INTERNATIONAL CONFERENCE ON ADVANCED INFORMATION NETWORKING AND APPLICATIONS (AINA), 2018, : 752 - 758
  • [30] Detecting APT Attacks Based on Network Traffic Using Machine Learning
    Xuan, Cho Do
    JOURNAL OF WEB ENGINEERING, 2021, 20 (01): : 171 - 190
12345