MalwareLab : experimentation with cybercrime attack tools

L. Allodi; F. Massacci; V. Kotov

MalwareLab : experimentation with cybercrime attack tools

L. Allodi, F. Massacci, V. Kotov

Research output: Contribution to conference › Paper › Academic

Abstract

Cybercrime attack tools (i.e. Exploit Kits) are reportedly responsible for the majority of attacks affecting home users. Exploit kits are traded in the black markets at different prices and advertising different capabilities and functionalities. In this paper we present our experimental approach in testing 10 exploit kits leaked from the mar- kets that we deployed in an isolated environment, our MalwareLab. The purpose of this experiment is to test these tools in terms of resiliency against changing soft- ware configurations in time. We present our experiment design and implementation, discuss challenges, lesson learned and open problems, and present a preliminary analysis of the results.

Original language	English
Publication status	Published - 2013
Externally published	Yes
Event	6th Workshop on Cyber Security Experimentation and Test (CSET 2013) - Washington, D.C., United States Duration: 12 Aug 2013 → 12 Aug 2013 Conference number: 6 https://www.usenix.org/conference/cset13

Conference

Conference	6th Workshop on Cyber Security Experimentation and Test (CSET 2013)
Abbreviated title	CSET 2013
Country	United States
City	Washington, D.C.
Period	12/08/13 → 12/08/13
Internet address	https://www.usenix.org/conference/cset13

Access to Document

https://www.usenix.org/conference/cset13/workshop-program/presentation/allodi

Fingerprint Dive into the research topics of 'MalwareLab : experimentation with cybercrime attack tools'. Together they form a unique fingerprint.

Cite this

Allodi, L., Massacci, F., & Kotov, V. (2013). MalwareLab : experimentation with cybercrime attack tools. Paper presented at 6th Workshop on Cyber Security Experimentation and Test (CSET 2013), Washington, D.C., United States. https://www.usenix.org/conference/cset13/workshop-program/presentation/allodi

@conference{59c12aab486046c594af0563e541851b,

title = "MalwareLab : experimentation with cybercrime attack tools",

abstract = "Cybercrime attack tools (i.e. Exploit Kits) are reportedly responsible for the majority of attacks affecting home users. Exploit kits are traded in the black markets at different prices and advertising different capabilities and functionalities. In this paper we present our experimental approach in testing 10 exploit kits leaked from the mar- kets that we deployed in an isolated environment, our MalwareLab. The purpose of this experiment is to test these tools in terms of resiliency against changing soft- ware configurations in time. We present our experiment design and implementation, discuss challenges, lesson learned and open problems, and present a preliminary analysis of the results.",

author = "L. Allodi and F. Massacci and V. Kotov",

year = "2013",

language = "English",

note = "6th Workshop on Cyber Security Experimentation and Test (CSET 2013), CSET 2013 ; Conference date: 12-08-2013 Through 12-08-2013",

url = "https://www.usenix.org/conference/cset13",

}

TY - CONF

T1 - MalwareLab : experimentation with cybercrime attack tools

AU - Allodi, L.

AU - Massacci, F.

AU - Kotov, V.

N1 - Conference code: 6

PY - 2013

Y1 - 2013

N2 - Cybercrime attack tools (i.e. Exploit Kits) are reportedly responsible for the majority of attacks affecting home users. Exploit kits are traded in the black markets at different prices and advertising different capabilities and functionalities. In this paper we present our experimental approach in testing 10 exploit kits leaked from the mar- kets that we deployed in an isolated environment, our MalwareLab. The purpose of this experiment is to test these tools in terms of resiliency against changing soft- ware configurations in time. We present our experiment design and implementation, discuss challenges, lesson learned and open problems, and present a preliminary analysis of the results.

AB - Cybercrime attack tools (i.e. Exploit Kits) are reportedly responsible for the majority of attacks affecting home users. Exploit kits are traded in the black markets at different prices and advertising different capabilities and functionalities. In this paper we present our experimental approach in testing 10 exploit kits leaked from the mar- kets that we deployed in an isolated environment, our MalwareLab. The purpose of this experiment is to test these tools in terms of resiliency against changing soft- ware configurations in time. We present our experiment design and implementation, discuss challenges, lesson learned and open problems, and present a preliminary analysis of the results.

M3 - Paper

T2 - 6th Workshop on Cyber Security Experimentation and Test (CSET 2013)

Y2 - 12 August 2013 through 12 August 2013

ER -