Projects

Cyber Situation Awareness #

Cybaware

A Cyber Awareness Framework for Attack Analysis, Prediction, and Visualization

Intrusion detection #

libAnomaly

A framework for the development of anomaly detection systems

Web-based Intrusion Detection

Research on the detection of web-based attacks

Alert Correlation

Real-time intrusion detection alert correlation

STAT

A framework for developing intrusion detection systems based on the State Transistion Analysis Technique

Malware Analysis and Detection #

Anubis

Anubis: Analyzing Unknown Binaries

Botnet Analysis and mitigation

Developing novel botnet mitigation techniques

Your Botnet is My Botnet

Taking over the Torpig Botnet

Spyware Detection

Behavioral classification of spyware and detection through static and dynamic analysis.

Worm Detection

Next generation worm detection using structural information of executables

Disasm

Disassembly of obfuscated binary code

iTrace

Dynamic Tracing of Binary Code Execution

Mobile Security #

TrustDroid

Analysis of the trust relationships between the various components of smartphones and the surrounding ecosystem

Social Network Security #

Social Network Security

Detecting Malicious Activity on Social Networks

Underground Economy #

Underground Economy

Studying the Underground Economy

Verification of Security and Safety Properties #

ASTRAL

A Formal Specification Language for Real-Time Systems

Model Checking

Infinite State Model Checking and Debugging

Vulnerability Analysis and Exploitation #

E-Voting Security

Analysis of the Security of E-Voting Systems

SNOOZE

A Stateful NetwOrk prOtocol fuzZEr

Sploit

A Tool for the Generation of Mutant Attacks

IoT Security

Analyzing and Understanding Diverse IoT Devices

Web Security #

Web Vulnerability Analysis

Web Vulnerability Analysis (Black and White Box)

Wepawet

Detection and Analysis of Malicious Web Content