MILTIADES: Multi-Layer Techniques for Attack Detection Systems
Over the last few years we have been witnessing an ever-increasing amount of computer attacks on the Internet. These attacks, which in the colorful language of computers are called computer viruses, computer worms, or simply Internet epidemics, have demonstrated that they can compromise a very large number of computers within just a few minutes.
This project aims to contribute towards the containment of zero-day cyberattacks by designing and developing mechanisms for impeding the spreading rate of such epidemics by poisoning their intelligence gathering services with stale information, and for detecting and fingerprinting highly obfuscated polymorphic and metamorphic worms.
- Michalis Polychronakis, Kostas G. Anagnostakis, and Evangelos P. Markatos. Emulation-based Detection of Non-self-contained Polymorphic Shellcode. In Proceedings of the 10th International Symposium on Recent Advances in Intrusion Detection (RAID). September 2007, Queensland, Australia. (pdf)
- Spiros Antonatos, Periklis Akritidis, Evangelos P. Markatos and Kostas G. Anagnostakis. Defending against Hitlist Worms using Network Address Space Randomization In Computer Networks, 2007 (pdf)
- Michalis Polychronakis, Kostas G. Anagnostakis, and Evangelos P. Markatos. Network-level Polymorphic Shellcode Detection using Emulation. In Journal in Computer Virology, vol. 2, no. 4, pp. 257-274, February 2007 (pdf)
- Spiros Antonatos and Kostas G. Anagnostakis. TAO: Protecting against Hitlist Worms using Transparent Address Obfuscation. In Proceedings of the 10th IFIP Open Conference on Communications and Multimedia Security (CMS'06) (pdf)
- Michalis Polychronakis, Kostas G. Anagnostakis, and Evangelos P. Markatos. Network-level Polymorphic Shellcode Detection using Emulation. In Proceedings of the GI/IEEE SIG SIDAR Conference on Detection of Intrusions and Malware & Vulnerability Assessment (DIMVA). July 2006, Berlin, Germany. (pdf)
- D1.1: "Requirements Analysis"
- D2.1: System Design
- D3.1: System Implementation
- D4.1: Experimental Evaluation and Real-world Deployment
- The project MILTIADES is funded by the the General Secretariat of Research and Development under contract number 05NON-EU-109. Duration: 2006-2008.