Skip to Main content Skip to Navigation
Conference papers

MASSE: Modular Automated Syntactic Signature Extraction

Fabrizio Biondi 1, 2 François Déchelle 3 Axel Legay 2
2 TAMIS - Threat Analysis and Mitigation for Information Security
Inria Rennes – Bretagne Atlantique , IRISA-D4 - LANGAGE ET GÉNIE LOGICIEL
Abstract : We present the MASSE architecture, a YARA-based open source client-server malware detection platform. MASSE includes highly effective automated syntactic malware detection rule generation for the clients based on a server-side modular malware detection system. Multiple techniques are used to make MASSE effective at detecting malware while keeping it from disrupting users and hindering reverse-engineering of its malware analysis by malware creators.
Document type :
Conference papers
Complete list of metadata

Cited literature [3 references]  Display  Hide  Download

https://hal.inria.fr/hal-01629035
Contributor : Fabrizio Biondi <>
Submitted on : Sunday, November 5, 2017 - 10:26:58 PM
Last modification on : Thursday, January 7, 2021 - 4:34:54 PM
Long-term archiving on: : Tuesday, February 6, 2018 - 12:33:45 PM

File

main.pdf
Files produced by the author(s)

Identifiers

  • HAL Id : hal-01629035, version 1

Citation

Fabrizio Biondi, François Déchelle, Axel Legay. MASSE: Modular Automated Syntactic Signature Extraction. ISSRE 2017 - The 28th International Symposium on Software Reliability Engineering - IEEE, Oct 2017, Toulouse, France. pp.1-2. ⟨hal-01629035⟩

Share

Metrics

Record views

564

Files downloads

422