A Shellcode Detection Method Based on Full Native API Sequence and Support Vector Machine

机译：一种基于全本机API序列和支持向量机的ShellCode检测方法

获取原文

获取外文期刊封面目录资料

页面导航

摘要
著录项
引文网络
相似文献
相关主题

摘要

Dynamic monitoring the behavior of a program is widely used to discriminate between benign program and malware. It is usually based on the dynamic characteristics of a program, such as API call sequence or API call frequency to judge. The key innovation of this paper is to consider the full Native API sequence and use the support vector machine to detect the shellcode. We also use the Markov chain to extract and digitize Native API sequence features. Our experimental results show that the method proposed in this paper has high accuracy and low detection rate.

机译：动态监控程序的行为被广泛用于区分良性程序和恶意软件。它通常基于程序的动态特性，例如API呼叫序列或API呼叫频率来判断。本文的关键创新是考虑完整的本机API序列，并使用支持向量机检测Shellcode。我们还使用Markov链来提取和数字化本机API序列功能。我们的实验结果表明，本文提出的方法具有高精度和低检测率。

著录项

来源
《International Conference on Applied Materials and Manufacturing Technology》|2017年|792 p.|共6页
会议地点
作者
Yixuan Cheng; Wenqing Fan; Wei Huang;
展开▼
作者单位

展开▼
会议组织
原文格式 PDF
正文语种
中图分类工程材料学;
关键词

相似文献

外文文献
中文文献
专利

1. Comparison of machine learning methods for stationary wavelet entropy-based multiple sclerosis detection: decision tree, k-nearest neighbors, and support vector machine [J] . Zhang Yudong, Lu Siyuan, Zhou Xingxing, Simulation . 2016,第9期

机译：基于平稳小波熵的多发性硬化检测机器学习方法的比较：决策树，k最近邻和支持向量机
2. Multi-Dimension Support Vector Machine Based Crowd Detection and Localisation Framework for Varying Video Sequences [J] . Manoharan Mahalakshmi, Radhakrishnan Kanthavel, Divakaran Thilagavathy Dinesh Circuits and Systems . 2016,第11期

机译：基于多维支持向量机的可变视频序列人群检测和定位框架
3. Multi-Dimension Support Vector Machine Based Crowd Detection and Localisation Framework for Varying Video Sequences [J] . Manoharan Mahalakshmi, Radhakrishnan Kanthavel, Divakaran Thilagavathy Dinesh Circuits and systems . 2016,第11期

机译：基于多维支持向量机的可变视频序列人群检测和定位框架
4. A Shellcode Detection Method Based on Full Native API Sequence and Support Vector Machine [C] . Yixuan Cheng, Wenqing Fan, Wei Huang International Conference on Applied Materials and Manufacturing Technology . 2017

机译：一种基于全本机API序列和支持向量机的ShellCode检测方法
5. Functional near infrared detection of real and imagined finger taps using support vector machine, linear discriminant analysis, and decision tree classification methods [D] . Stoudenmire, Eugene A. 2013

机译：使用支持向量机，线性判别分析和决策树分类方法的真实和想象的手指抽头的近红外检测近红外检测
6. Comparison of Support-Vector Machine and Sparse Representation Using a Modified Rule-Based Method for Automated Myocardial Ischemia Detection [O] . Yi-Li Tseng, Keng-Sheng Lin, Fu-Shan Jaw 2016

机译：支持向量机和稀疏表示的比较基于改进的基于规则的自动缺血检测方法
7. A robust error detection mechanism for H.264/AVC coded video sequences based on support vector machines [O] . Farrugia, Reuben A., Debono, Carl James 2008

机译：基于支持向量机的H.264 / AVC编码视频序列的鲁棒错误检测机制

A Shellcode Detection Method Based on Full Native API Sequence and Support Vector Machine

摘要

著录项

引文网络

相似文献

相关主题

期刊订阅