IDS mailing list archives

Re: A Neural Network to detect polymorphic shellcodes

From: Stefano Zanero <s.zanero () securenetwork it>
Date: Thu, 17 Aug 2006 14:12:28 +0200

mimanium () hotmail com wrote:

Hello,

I am loking for project that implement Neural Networks and spectrum analysis to detect polymorphic shellcodes such as 
those of ADMutate.


This seems like a bad case of "pushing a technique onto a problem" or
better "buzzword fascination problem".

Spectral analysis is useful on continuous variables. How would you
represent "a shellcode" as a continuous variable or multivariate series
of continuos variables ?

Neural networks themselves are more useful on metric variables than on
qualitative variables. And here again: on what metrics and features
would you train them ?

Stefano

------------------------------------------------------------------------
Test Your IDS

Is your IDS deployed correctly?
Find out quickly and easily by testing it 
with real-world attacks from CORE IMPACT.
Go to http://www.securityfocus.com/sponsor/CoreSecurity_focus-ids_040708 
to learn more.
------------------------------------------------------------------------

Current thread:

Re: A Neural Network to detect polymorphic shellcodes Stefano Zanero (Aug 17)
- Re: A Neural Network to detect polymorphic shellcodes Michael Vergoz (Aug 18)
- <Possible follow-ups>
- Re: A Neural Network to detect polymorphic shellcodes Jason Muskat, GCUX, VE3TSJ (Aug 24)