Malware is one of the biggest security threats on the Internet today and deploying effective
defensive solutions requires the rapid analysis of a continuously increasing number of …

Auditing, a central pillar of operating system security, has only recently come into its own as
an active area of public research. This resurgent interest is due in large part to the notion of …

Malicious software, a threat users face on a daily basis, have evolved from simple bankers
based on social engineering to advanced persistent threats. Recent research and …

Virtualization has become an indispensable technique for scaling up the analysis of
malicious code, such as for malware analysis or shellcode detection systems. Frameworks …

The security guarantees of confidential VMs (eg, AMD's SEV) are a double-edged sword:
Their protection against undesired VM inspection by malicious or compromised cloud …

Virtual machine introspection (VMI) is a technique for the external monitoring of virtual
machines. Through previous work, it became apparent that VMI can contribute to the security …

In order to thwart dynamic analysis and bypass protection mechanisms, malware have been
using several file formats and evasive techniques. While publicly available dynamic …

With the advance of hardware, network, and virtualization technologies, cloud computing
has prevailed and become the target of security threats such as the cross virtual machine …

We propose a design and implementation for an Application Programming Interface (API)
monitoring system called API Chaser, which is resistant to evasion-type anti-analysis …

Modern malware and spyware platforms attack existing antivirus solutions and even
Microsoft PatchGuard. To protect users and business systems new technologies developed …