MSS: Detection of vulnerability scanning using machine based learning

MSS: Detection of vulnerability scanning using machine based learning

Keywords: Duration: 5-10 months Context: WO thesis Context: In the Security Operations environment valid vulnerability scanning…

Keywords:

Duration: 5-10 months
Context: WO thesis

Context:

In the Security Operations environment valid vulnerability scanning activity often results in a flow of false positives, burdening the analyst. At the same time attackers could use similar scanning tools and techniques to engage in reconnaissance efforts. This research is focused on trying to distinguish those two types of activities, using machine based learning techniques.

Activities:

Research a scoped number vulnerability scanning tools and techniques and the resulting patterns. define MBL approach, produce a PoC on how detection could work, using a combination of tools, such as Suricata, Bro, etc

Neem contact op

+31 (0) 15 284 79 99

fox@fox-it.com

Delft