Threats that have been primarily targeting nation states and their associated entities have
expanded the target zone to include the private and corporate sectors. This class of threats …

Deception techniques have been widely seen as a game changer in cyber defense. In this
paper, we review representative techniques in honeypots, honeytokens, and moving target …

In network intrusion detection research, one popular strategy for finding attacks is monitoring
a network's activity for anomalies: deviations from profiles of normality previously learned …

We present a new kind of network perimeter monitoring strategy, which focuses on
recognizing the infection and coordination dialog that occurs during a successful malware …

Systems, methods, and media for detecting network anoma lies are provided. In some
embodiments, a training dataset of communication protocol messages having argument …

(57) ABSTRACT A method and system of detecting a malicious and/or botnet-related
domain name, comprising: reviewing a domain name used in Domain Name System (DNS) …

4,843,540 A 6, 1989 Stolfo 4,860,201 A 8, 1989 Stolfo et al. 5,363,473 A 11/1994 Stolfo et al.
5,497.486 A 3, 1996 Stolfo et al. 5,563,783 A 10, 1996 Stolfo et al. 5,668,897 A 9, 1997 …

An alarming trend in malware attacks is that they are armed with stealthy techniques to
detect, evade, and subvert malware detection facilities of the victim. On the defensive side, a …

We present ClearView, a system for automatically patching errors in deployed software.
ClearView works on stripped Windows x86 binaries without any need for source code …

As the web continues to play an ever increasing role in information exchange, so too is it
becoming the prevailing platform for infecting vulnerable hosts. In this paper, we provide a …