tfjmp / provenance-papers
☆95Updated 3 years ago
Related projects: ⓘ
- Material from the DARPA Transparent Computing Program☆172Updated 4 years ago
- ☆14Updated 3 years ago
- SHADEWATCHER: Recommendation-guided Cyber Threat Analysis using System Audit Records, Oakland'22☆75Updated last year
- ATLAS: A Sequence-based Learning Approach for Attack Investigation☆137Updated 2 years ago
- GraphChi's C++ version. Big Data - small machine.☆16Updated 3 years ago
- Have fun with audit log analysis :)☆133Updated 4 months ago
- ☆18Updated 3 years ago
- ☆11Updated 5 years ago
- ☆82Updated last year
- Datasets used in the StreamSpot experiments☆48Updated 8 years ago
- APT-KGL: An Intelligent APT Detection System Based on Threat Knowledge and Heterogeneous Provenance Graph Learning☆54Updated 2 years ago
- ☆51Updated 3 weeks ago
- ☆70Updated last year
- ☆18Updated 3 years ago
- KRYSTAL: Knowledge Graph-based Framework for Tactical Attack Discovery in Audit Data☆26Updated 4 months ago
- Discovering Malicious Functionality through Binary Reconstruction☆51Updated 3 years ago
- System traces dataset generation tool.☆12Updated 2 years ago
- ☆23Updated 2 years ago
- Instructions and tools to use data from engagement 5 of Darpa Transparent Computing Program☆19Updated 3 years ago
- Usenix Security'23☆13Updated last year
- ☆14Updated 2 years ago
- ☆20Updated 3 years ago
- ☆11Updated 5 years ago
- ☆30Updated 4 months ago
- Code for "MalGraph: Hierarchical Graph Neural Networks for Robust Windows Malware Detection"☆38Updated 2 years ago
- Codes and data for USENIX Security 24 paper "MAGIC: Detecting Advanced Persistent Threats via Masked Graph Representation Learning"☆64Updated 3 months ago
- Original implementation and resources of DeepCASE as in the S&P '22 paper☆90Updated last year
- ☆24Updated 2 years ago
- SPADE: Support for Provenance Auditing in Distributed Environments☆166Updated last week
- ☆12Updated 3 years ago