MAIT: Malware Analysis and Intelligence Tool

Yücel, Çağatay; Lockett, Adam; Chalkias, Ioannis; Mallis, Dimitrios; Katos, Vasilios

doi:10.11610/isij.5024

Cited by 2 publications

(4 citation statements)

References 7 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Attacks & Defences: Adversarial Behaviours Cairis [60], ESASCF [73], ESSecA [75], HARMer [81], Lore [87], MAL [91], PenQuest [112], PenQuest [112], SVED [133], TAMELESS [134] Attacks & Defences: Malware & Attack Technology: Malware Analysis: Analysis Techniques: Static Analysis/Dynamic Analysis MAIT [90] Human, Organisational & Regulatory Aspects: Human Factors…”

Section: Cybok Toolsmentioning

confidence: 99%

“…MAIT (2021, Yucel et al [90]) (Malware Analysis and Intelligence Tool) utilises state-of-the-art static and dynamic malware analysers alongside open-source malware databases to generate malware signatures and intelligence reports. The tool offers chronological data for malicious files, revealing related vulnerabilities and providing insights into attribution, techniques, tactics, and procedures employed by Advanced Persistent Threat groups in attacks.…”

Section: Author Contributions Acm Ccs Toolsmentioning

confidence: 99%

See 1 more Smart Citation

Bridging the Gap: A Survey and Classification of Research-Informed Ethical Hacking Tools

Modesti,

Golightly,

Holmes

et al. 2024

JCP

View full text Add to dashboard Cite

The majority of Ethical Hacking (EH) tools utilised in penetration testing are developed by practitioners within the industry or underground communities. Similarly, academic researchers have also contributed to developing security tools. However, there appears to be limited awareness among practitioners of academic contributions in this domain, creating a significant gap between industry and academia’s contributions to EH tools. This research paper aims to survey the current state of EH academic research, primarily focusing on research-informed security tools. We categorise these tools into process-based frameworks (such as PTES and Mitre ATT&CK) and knowledge-based frameworks (such as CyBOK and ACM CCS). This classification provides a comprehensive overview of novel, research-informed tools, considering their functionality and application areas. The analysis covers licensing, release dates, source code availability, development activity, and peer review status, providing valuable insights into the current state of research in this field.

show abstract

Section: Cybok Toolsmentioning

confidence: 99%

Section: Author Contributions Acm Ccs Toolsmentioning

confidence: 99%

Bridging the Gap: A Survey and Classification of Research-Informed Ethical Hacking Tools

Modesti,

Golightly,

Holmes

et al. 2024

JCP

View full text Add to dashboard Cite

show abstract

“…CTI greatly benefits security staff and IT managers in various aspects, including incident avoidance and mitigation, prioritisation of vulnerability management, implementation of proactive countermeasures against emerging threats, and the development of case studies for internal use [9]. Moreover, organisations may share CTI amongst each other, developing a "herd immunity" against common threats [10]. Having a collaborative intelligence sharing platform allows for new threats to be more quickly identified, and for effective responses to be coordinated throughout the community [11].…”

Section: A Cyber Threat Intelligencementioning

confidence: 99%

“…Several research studies have used MalwareBazaar to great benefit. When developing the Malware Analysis and Intelligence Tool (MAIT), Yucel et al [10] used the MalwareBazaar API to retrieve advanced persistent threats (APTs) associated with particular malware samples, and to determine when the samples were first identified and uploaded to the MalwareBazaar database. This allows MAIT to produce detailed CTI reports for submitted malware samples, including information such as associated APT actors and first seen dates.…”

Section: Malwarebazaarmentioning

confidence: 99%

A Cost-Efficient Threat Intelligence Platform Powered by Crowdsourced OSINT

Daou,

Li,

Shiaeles

2023

2023 IEEE International Conference on Cyber Security and Resilience (CSR)

View full text Add to dashboard Cite

Cyberattacks are a primary concern for organisations of all kinds, costing billions of dollars globally each year. As more businesses begin operating online, and as attackers develop more advanced malware and evolve their modus operandi, the demand for effective cyber security measures grows exponentially. One such measure is the threat intelligence platform (TIP): a system which gathers and presents information about current cyber threats, providing actionable insight to aid security teams in employing a more proactive approach to thwarting attacks. These platforms and their accompanying intelligence feeds can be costly when purchased from a commercial vendor, creating a financial barrier for small and medium-sized enterprises. This paper explores the use of crowdsourced open-source intelligence (OSINT) as an alternative to commercial threat intelligence. A model TIP is developed using a combination of crowdsourced OSINT, freeware, and cloud services, demonstrating the feasibility and benefits of using OSINT over commercial solutions. The developed TIP is evaluated using a dataset containing 16,713 malware samples collected via the MalwareBazaar repository.

show abstract

MAIT: Malware Analysis and Intelligence Tool

Cited by 2 publications

References 7 publications

Bridging the Gap: A Survey and Classification of Research-Informed Ethical Hacking Tools

Bridging the Gap: A Survey and Classification of Research-Informed Ethical Hacking Tools

A Cost-Efficient Threat Intelligence Platform Powered by Crowdsourced OSINT

Contact Info

Product

Resources

About