PORTFILER extracts port-level features from the Zeek connection logs collected at a border of a monitored network, applies anomaly detection techniques to identify suspicious events, and ranks the alerts across ports for investigation by the Security Operations Center (SOC).
Dec 27, 2021 · We propose PORTFILER (PORT-Level Network Traffic ProFILER), a new machine learning system applied to network traffic for detecting SPM attacks.
Sep 5, 2021 · Abstract—Recent self-propagating malware (SPM) campaigns compromised hundred of thousands of victim machines on the. Internet.
Sep 12, 2024 · We propose PORTFILER (PORT-Level Network Traffic ProFILER), a new machine learning system applied to network traffic for detecting SPM attacks.
PorTFILER (PORT-Level Network Traffic ProFILER), a new machine learning system applied to network traffic for detecting SPM attacks, can detect SPMattacks ...
A large body of research on the subject so far has been devoted to the design of methods to detect and mitigate self-propagating malware.
Jul 25, 2022 · PORTFILER: Port-Level Network Profiling for Self-Propagating Malware Detection. ... Network Traffic with Realistic, Self-Propagating Malware ...
People also ask
What is self propagating malware?
Which type of malware can self propagate over a network?
Apr 25, 2024 · PORTFILER: Port-Level Network Profiling for Self-Propagating Malware Detection. CNS 2021: 182-190. [i3]. view. electronic edition @ arxiv.org ...
PORTFILER: Port-Level Network Profiling for Self-Propagating Malware Detection. In Proceedings of the 9th IEEE Conference on Communications and Network ...
Jun 17, 2024 · We propose PORTFILER (PORT-Level Network Traffic ProFILER), a new machine learning system applied to network traffic for detecting SPM attacks.