FRINK Linked Data Fragments server

Matches in SemOpenAlex for { <https://semopenalex.org/work/W1534092936> ?p ?o ?g. }

• W1534092936 abstract "With the rapid proliferation of malware attacks on the Internet, understanding these malicious behaviors plays a critical role in crafting effective defense. Advanced malware analysis relies on virtualization or emulation technology to run samples in a confined environment, and to analyze malicious activities by instrumenting code execution. However, virtual machines and emulators inevitably create artifacts in the execution environment, making these approaches vulnerable to detection or subversion. In this paper, we present MALT, a debugging framework that employs System Management Mode, a CPU mode in the x86 architecture, to transparently study armored malware. MALT does not depend on virtualization or emulation and thus is immune to threats targeting such environments. Our approach reduces the attack surface at the software level, and advances state-of-the-art debugging transparency. MALT embodies various debugging functions, including register/memory accesses, breakpoints, and four stepping modes. We implemented a prototype of MALT on two physical machines, and we conducted experiments by testing an array of existing anti-virtualization, anti-emulation, and packing techniques against MALT. The experimental results show that our prototype remains transparent and undetected against the samples. Furthermore, our prototype of MALT introduces moderate but manageable overheads on both Windows and Linux platforms." @default.
• W1534092936 created "2016-06-24" @default.
• W1534092936 creator A5026728546 @default.
• W1534092936 creator A5030030910 @default.
• W1534092936 creator A5031899265 @default.
• W1534092936 creator A5041500780 @default.
• W1534092936 creator A5071331559 @default.
• W1534092936 date "2015-05-01" @default.
• W1534092936 modified "2023-09-23" @default.
• W1534092936 title "Using Hardware Features for Increased Debugging Transparency" @default.
• W1534092936 cites W1970914644 @default.
• W1534092936 cites W1975177131 @default.
• W1534092936 cites W1975582382 @default.
• W1534092936 cites W1990360323 @default.
• W1534092936 cites W2000249510 @default.
• W1534092936 cites W2024109642 @default.
• W1534092936 cites W2032151752 @default.
• W1534092936 cites W2053343312 @default.
• W1534092936 cites W2065085847 @default.
• W1534092936 cites W2070041400 @default.
• W1534092936 cites W2092307728 @default.
• W1534092936 cites W2100002952 @default.
• W1534092936 cites W2101889913 @default.
• W1534092936 cites W2102001185 @default.
• W1534092936 cites W2117882778 @default.
• W1534092936 cites W2133692747 @default.
• W1534092936 cites W2140807364 @default.
• W1534092936 cites W2145688371 @default.
• W1534092936 cites W2294049595 @default.
• W1534092936 cites W78162143 @default.
• W1534092936 doi "https://doi.org/10.1109/sp.2015.11" @default.
• W1534092936 hasPublicationYear "2015" @default.
• W1534092936 type Work @default.
• W1534092936 sameAs 1534092936 @default.
• W1534092936 citedByCount "51" @default.
• W1534092936 countsByYear W15340929362015 @default.
• W1534092936 countsByYear W15340929362016 @default.
• W1534092936 countsByYear W15340929362017 @default.
• W1534092936 countsByYear W15340929362018 @default.
• W1534092936 countsByYear W15340929362019 @default.
• W1534092936 countsByYear W15340929362020 @default.
• W1534092936 countsByYear W15340929362021 @default.
• W1534092936 countsByYear W15340929362022 @default.
• W1534092936 countsByYear W15340929362023 @default.
• W1534092936 crossrefType "proceedings-article" @default.
• W1534092936 hasAuthorship W1534092936A5026728546 @default.
• W1534092936 hasAuthorship W1534092936A5030030910 @default.
• W1534092936 hasAuthorship W1534092936A5031899265 @default.
• W1534092936 hasAuthorship W1534092936A5041500780 @default.
• W1534092936 hasAuthorship W1534092936A5071331559 @default.
• W1534092936 hasBestOaLocation W15340929361 @default.
• W1534092936 hasConcept C111919701 @default.
• W1534092936 hasConcept C112904061 @default.
• W1534092936 hasConcept C118524514 @default.
• W1534092936 hasConcept C149635348 @default.
• W1534092936 hasConcept C149810388 @default.
• W1534092936 hasConcept C162324750 @default.
• W1534092936 hasConcept C168065819 @default.
• W1534092936 hasConcept C170723468 @default.
• W1534092936 hasConcept C25344961 @default.
• W1534092936 hasConcept C2777904410 @default.
• W1534092936 hasConcept C2780233690 @default.
• W1534092936 hasConcept C38652104 @default.
• W1534092936 hasConcept C41008148 @default.
• W1534092936 hasConcept C50522688 @default.
• W1534092936 hasConcept C513985346 @default.
• W1534092936 hasConcept C541664917 @default.
• W1534092936 hasConcept C68793194 @default.
• W1534092936 hasConcept C79974875 @default.
• W1534092936 hasConceptScore W1534092936C111919701 @default.
• W1534092936 hasConceptScore W1534092936C112904061 @default.
• W1534092936 hasConceptScore W1534092936C118524514 @default.
• W1534092936 hasConceptScore W1534092936C149635348 @default.
• W1534092936 hasConceptScore W1534092936C149810388 @default.
• W1534092936 hasConceptScore W1534092936C162324750 @default.
• W1534092936 hasConceptScore W1534092936C168065819 @default.
• W1534092936 hasConceptScore W1534092936C170723468 @default.
• W1534092936 hasConceptScore W1534092936C25344961 @default.
• W1534092936 hasConceptScore W1534092936C2777904410 @default.
• W1534092936 hasConceptScore W1534092936C2780233690 @default.
• W1534092936 hasConceptScore W1534092936C38652104 @default.
• W1534092936 hasConceptScore W1534092936C41008148 @default.
• W1534092936 hasConceptScore W1534092936C50522688 @default.
• W1534092936 hasConceptScore W1534092936C513985346 @default.
• W1534092936 hasConceptScore W1534092936C541664917 @default.
• W1534092936 hasConceptScore W1534092936C68793194 @default.
• W1534092936 hasConceptScore W1534092936C79974875 @default.
• W1534092936 hasLocation W15340929361 @default.
• W1534092936 hasOpenAccess W1534092936 @default.
• W1534092936 hasPrimaryLocation W15340929361 @default.
• W1534092936 hasRelatedWork W2149719231 @default.
• W1534092936 hasRelatedWork W2363056855 @default.
• W1534092936 hasRelatedWork W2393865942 @default.
• W1534092936 hasRelatedWork W2613813971 @default.
• W1534092936 hasRelatedWork W2798659268 @default.
• W1534092936 hasRelatedWork W2998045655 @default.
• W1534092936 hasRelatedWork W2998693821 @default.
• W1534092936 hasRelatedWork W3005899844 @default.
• W1534092936 hasRelatedWork W4292387395 @default.
• W1534092936 hasRelatedWork W941489959 @default.

• next