Detecting Threats, Not Sandboxes

May 18, 2017 • Presentation

By

Blake Anderson (Cisco Systems, Inc.) and David McGrew (Cisco Systems, Inc.)

In this presentation, the authors discuss detecting threats and characterizing network environment to improve Malware Classification.

Publisher

Software Engineering Institute

Topic or Tag

Flocon

Abstract

The speakers discuss the necessity of understanding and accounting for the biases present in different environments. The data in this presentation was collected with Joy, a package for capturing and analyzing network flow data and intraflow data, for network research, forensics, and security monitoring.