SlideShare a Scribd company logo

Supervised Learning in Cybersecurity

Download as PPTX, PDF
International Institute of Information Technology (I²IT), profile picture
International Institute of Information Technology (I²IT)

The document discusses using supervised machine learning for malware detection. It aims to classify files as malicious or not malicious by analyzing their PE headers with algorithms like ExtraTreeClassifier and RandomForestClassifier. The process involves extracting features from a dataset of PE files, using the classifiers to optimize and partition the data, then training the random forest model to classify files. Machine learning can effectively analyze malware and help build better antivirus solutions to detect threats in real-time.

Technology
1 of 11
Download to read offline
1
2
3
4
5
6
7
8
9
10
11
SUPERVISED LEARNING IN CYBERSECURITY Ramkrushna M. Assistant Professor International Institute of Information Technology, I²IT, P-14, Rajiv Gandhi Infotech Park, Hinjawadi Phase 1, Pune - 411 057 Phone - +91 20 22933441/2/3 | Website - www.isquareit.edu.in | Email - info@isquareit.edu.in
Contents Introduction Motivation Objectives Flow Process ApplicationsImplementation International Institute of Information Technology, I²IT, P-14, Rajiv Gandhi Infotech Park, Hinjawadi Phase 1, Pune - 411 057 Phone - +91 20 22933441/2/3 | Website - www.isquareit.edu.in | Email - info@isquareit.edu.in
Introduction Cybersecurity: Cyber Security, it is also called as information security. It works on three primary principles integrity, confidentiality, and availability (ICA) of information. It contains set ethical tools, risk management techniques and best practices created to protect networks, devices, programs, and data from unauthorized access. Malware: Malware, it is kind of software created to harm to a computer, server, client, or computer network. Examples of Malware's are computer viruses, worms, Trojan horses, ransomware, spyware.
Motivation • The technology is moving towards its peak it's important to protect the information/data from intruders(Black hat). • Data is the primary key for any infrastructure so it is necessary to safeguard the data from theft or any kind of tampering. • Here's where cybersecurity comes into the picture to protect us from any kind of malicious activity. International Institute of Information Technology, I²IT, P-14, Rajiv Gandhi Infotech Park, Hinjawadi Phase 1, Pune - 411 057 Phone - +91 20 22933441/2/3 | Website - www.isquareit.edu.in | Email - info@isquareit.edu.in
Objectives Malware analysis with the help of ML and PE header files. To classify the whether the file is malicious or not. To build malware detection application with the help of ExtraTreeClassifier , RandomForestClassifier and PE header files. International Institute of Information Technology, I²IT, P-14, Rajiv Gandhi Infotech Park, Hinjawadi Phase 1, Pune - 411 057 Phone - +91 20 22933441/2/3 | Website - www.isquareit.edu.in | Email - info@isquareit.edu.in
Flow Process MALWARE DETECTION USING PE HEADERS Start Dataset(PE files) ExtraTreeClassifier RandomForest Output International Institute of Information Technology, I²IT, P-14, Rajiv Gandhi Infotech Park, Hinjawadi Phase 1, Pune - 411 057 Phone - +91 20 22933441/2/3 | Website - www.isquareit.edu.in | Email - info@isquareit.edu.in
Implementation Steps : • In order to implement machine learning in malware analysis we have taken the help of tools , pe header files , and help of machine learning algorithms such as extra tree classifier and random forest. • Here have chosen ExtraTreeClassisfier and Random forest over other ml algo such as gradient boost . • The main reason advantage of random forest classifier over gradient boost is that the random forest create the multitude of decisssion tree. More the number of tree better the classification and hence we get a better result. • Input files----->PE Header • ML Algorithm->ExtraTreesClassifier / Random Forest • Find Accurace Ratio • Classify the Malware International Institute of Information Technology, I²IT, P-14, Rajiv Gandhi Infotech Park, Hinjawadi Phase 1, Pune - 411 057 Phone - +91 20 22933441/2/3 | Website - www.isquareit.edu.in | Email - info@isquareit.edu.in
Portable Executable (PE) File Format • The Portable Executable (PE) format is a file format for executables, object code, and DLLs, used in 32-bit and 64-bit versions of Windows operating systems. • The PE file format was defined to provide the best way for the Windows Operating System to execute code and also to store the essential data which is needed to run a program. Portable Executable File Format is derived from the Microsoft Common Object File Format (COFF). International Institute of Information Technology, I²IT, P-14, Rajiv Gandhi Infotech Park, Hinjawadi Phase 1, Pune - 411 057 Phone - +91 20 22933441/2/3 | Website - www.isquareit.edu.in | Email - info@isquareit.edu.in
Step by Step Classification : Dataset (PE files): PE is file format for dll, executables, object codes for windows OS. ExtraTreeClassifier: Used for optimizing dataset i.e Splitting/partitioning the legitimate and Non legitimate dataset RandomForestClassifier: Method for classification by constructing multitude of decision tree at training tree International Institute of Information Technology, I²IT, P-14, Rajiv Gandhi Infotech Park, Hinjawadi Phase 1, Pune - 411 057 Phone - +91 20 22933441/2/3 | Website - www.isquareit.edu.in | Email - info@isquareit.edu.in
Applications: MACHINE LEARNING CAN PLAY A GREAT ROLE IN CYBERSECURITY FIELD .HERE ARE THE SOME APPLICATION OF MACHINE LEARNING IN MALWARE . ML APPLIED IN MALWARE ANALYSIS HELP US TO ANALYSIS/CLASSIFIE THE DIFFERENT TYPE OF MALWARE. ML ALONG WITH NEURAL NETWORK CAN HELP US TO IDENTIFIY AND CLASSIFIE THR MALWARE DURING REAL TIME. SO AS THE PRECAUTION CAN BE TAKEN BEFORE IT IS SPREAD/CAUSE HARM. ML APPLIED IN DETECTING THE MALWARE WILL HELP US TO BUILD BETTER ANTIVIRUSE THAT WILL GIVE BETTER PROTECTION THE IT INFRASTRUCTURE AND ALSO PEOPLE. International Institute of Information Technology, I²IT, P-14, Rajiv Gandhi Infotech Park, Hinjawadi Phase 1, Pune - 411 057 Phone - +91 20 22933441/2/3 | Website - www.isquareit.edu.in | Email - info@isquareit.edu.in
THANK-YOU Ramkrushna M. Assistant Professor International Institute of Information Technology, I²IT, P-14, Rajiv Gandhi Infotech Park, Hinjawadi Phase 1, Pune - 411 057 Phone - +91 20 22933441/2/3 | Website - www.isquareit.edu.in | Email - info@isquareit.edu.in http://www.isquareit.edu.in/

More Related Content

PPTX
FUSION - Pattern Recognition, Classification, Classifier Fusion
International Institute of Information Technology (I²IT)
 
PPTX
Document Type Definition (DTD)
International Institute of Information Technology (I²IT)
 
PPTX
Data Structure - Linked List
International Institute of Information Technology (I²IT)
 
PPTX
Introduction To Design Pattern
International Institute of Information Technology (I²IT)
 
PPTX
Introduction to TCP Protocol Suite
International Institute of Information Technology (I²IT)
 
PPTX
Difference Between AI(Artificial Intelligence), ML(Machine Learning), DL (Dee...
International Institute of Information Technology (I²IT)
 
PPTX
What Is Cascading Style Sheet?
International Institute of Information Technology (I²IT)
 
PPTX
State Pattern: Introduction & Implementation
International Institute of Information Technology (I²IT)
 
FUSION - Pattern Recognition, Classification, Classifier Fusion
International Institute of Information Technology (I²IT)
 
Document Type Definition (DTD)
International Institute of Information Technology (I²IT)
 
Data Structure - Linked List
International Institute of Information Technology (I²IT)
 
Introduction To Design Pattern
International Institute of Information Technology (I²IT)
 
Introduction to TCP Protocol Suite
International Institute of Information Technology (I²IT)
 
Difference Between AI(Artificial Intelligence), ML(Machine Learning), DL (Dee...
International Institute of Information Technology (I²IT)
 
What Is Cascading Style Sheet?
International Institute of Information Technology (I²IT)
 
State Pattern: Introduction & Implementation
International Institute of Information Technology (I²IT)
 

What's hot (20)

PPTX
Introduction to Big Data, HADOOP: HDFS, MapReduce
International Institute of Information Technology (I²IT)
 
PPTX
Programming with LEX & YACC
International Institute of Information Technology (I²IT)
 
PPTX
Differential Equation - Order Degree
International Institute of Information Technology (I²IT)
 
PPTX
Usability Heuristics - Principles & Examples
International Institute of Information Technology (I²IT)
 
PPTX
Database Query Optimization
International Institute of Information Technology (I²IT)
 
PPTX
Cloud Computing & Virtual Infrastructure
International Institute of Information Technology (I²IT)
 
PPTX
Factor Analysis & The Measurement Model
International Institute of Information Technology (I²IT)
 
PPT
What is DevOps?
International Institute of Information Technology (I²IT)
 
PPT
Introduction To Fog Computing
International Institute of Information Technology (I²IT)
 
PPTX
What Is LEX and YACC?
International Institute of Information Technology (I²IT)
 
PPTX
Basics of Computer Graphics
International Institute of Information Technology (I²IT)
 
PPTX
Memory Organization in 80386
International Institute of Information Technology (I²IT)
 
PPTX
Adapter Pattern: Introduction & Implementation (with examples)
International Institute of Information Technology (I²IT)
 
PPTX
Systems Programming & Operating Systems - Overview of LEX-and-YACC
International Institute of Information Technology (I²IT)
 
PPTX
Big Data Technologies
International Institute of Information Technology (I²IT)
 
PPTX
Superstructure and it's various components
International Institute of Information Technology (I²IT)
 
PPTX
Engineering Mathematics | Maxima and Minima
International Institute of Information Technology (I²IT)
 
PPTX
Fundamentals of Computer Networks
International Institute of Information Technology (I²IT)
 
PPTX
Artificial Intelligence - Introduction
International Institute of Information Technology (I²IT)
 
PPTX
Red Black Tree (and Examples)
International Institute of Information Technology (I²IT)
 
Introduction to Big Data, HADOOP: HDFS, MapReduce
International Institute of Information Technology (I²IT)
 
Programming with LEX & YACC
International Institute of Information Technology (I²IT)
 
Differential Equation - Order Degree
International Institute of Information Technology (I²IT)
 
Usability Heuristics - Principles & Examples
International Institute of Information Technology (I²IT)
 
Database Query Optimization
International Institute of Information Technology (I²IT)
 
Cloud Computing & Virtual Infrastructure
International Institute of Information Technology (I²IT)
 
Factor Analysis & The Measurement Model
International Institute of Information Technology (I²IT)
 
What is DevOps?
International Institute of Information Technology (I²IT)
 
Introduction To Fog Computing
International Institute of Information Technology (I²IT)
 
What Is LEX and YACC?
International Institute of Information Technology (I²IT)
 
Basics of Computer Graphics
International Institute of Information Technology (I²IT)
 
Memory Organization in 80386
International Institute of Information Technology (I²IT)
 
Adapter Pattern: Introduction & Implementation (with examples)
International Institute of Information Technology (I²IT)
 
Systems Programming & Operating Systems - Overview of LEX-and-YACC
International Institute of Information Technology (I²IT)
 
Big Data Technologies
International Institute of Information Technology (I²IT)
 
Superstructure and it's various components
International Institute of Information Technology (I²IT)
 
Engineering Mathematics | Maxima and Minima
International Institute of Information Technology (I²IT)
 
Fundamentals of Computer Networks
International Institute of Information Technology (I²IT)
 
Artificial Intelligence - Introduction
International Institute of Information Technology (I²IT)
 
Red Black Tree (and Examples)
International Institute of Information Technology (I²IT)
 
Ad

Similar to Supervised Learning in Cybersecurity (20)

PPT
devops dtail education and devops ools which r used
bhagirath bhatt
 
PPT
DevOps Industry Perspective Mr Pradip Ashok Chougule
ArnavLadkat1
 
PPTX
Introduction To Assembly Language Programming
International Institute of Information Technology (I²IT)
 
PDF
IRJET- Intelligent Laboratory Management System based on Internet of Thin...
IRJET Journal
 
PPTX
What Is High Performance-Computing?
International Institute of Information Technology (I²IT)
 
PPTX
DESIGN PATTERNS: Strategy Patterns
International Institute of Information Technology (I²IT)
 
DOCX
resume _jayendra Kadam
Jayendra Kadam
 
PPTX
Types of Artificial Intelligence
International Institute of Information Technology (I²IT)
 
PPTX
What Is Smart Computing?
International Institute of Information Technology (I²IT)
 
PDF
Study of Software Defect Prediction using Forward Pass RNN with Hyperbolic Ta...
ijtsrd
 
PPTX
DAA Introduction to Algorithms & Application
International Institute of Information Technology (I²IT)
 
PDF
Security Development Life Cycle
Directorate of Information Security | Ditjen Aptika
 
PDF
According To The Author Of “Build A Streamlined Refinery”,
Jill Lyons
 
PPTX
Butler
Thomas Butler, CISSP, CEH, CHFI, CISA, CPA, CIA
 
PDF
IRJET- Biometric Attendance Management System using Raspberry Pi
IRJET Journal
 
PPTX
Penetration testing dont just leave it to chance
Dr. Anish Cheriyan (PhD)
 
PPTX
Cloud Computing
International Institute of Information Technology (I²IT)
 
PDF
Phishing Website Detection Paradigm using XGBoost
IRJET Journal
 
PPT
Java as Object Oriented Programming Language
International Institute of Information Technology (I²IT)
 
PDF
Automatic Insider Threat Detection in E-mail System using N-gram Technique
IRJET Journal
 
devops dtail education and devops ools which r used
bhagirath bhatt
 
DevOps Industry Perspective Mr Pradip Ashok Chougule
ArnavLadkat1
 
Introduction To Assembly Language Programming
International Institute of Information Technology (I²IT)
 
IRJET- Intelligent Laboratory Management System based on Internet of Thin...
IRJET Journal
 
What Is High Performance-Computing?
International Institute of Information Technology (I²IT)
 
DESIGN PATTERNS: Strategy Patterns
International Institute of Information Technology (I²IT)
 
resume _jayendra Kadam
Jayendra Kadam
 
Types of Artificial Intelligence
International Institute of Information Technology (I²IT)
 
What Is Smart Computing?
International Institute of Information Technology (I²IT)
 
Study of Software Defect Prediction using Forward Pass RNN with Hyperbolic Ta...
ijtsrd
 
DAA Introduction to Algorithms & Application
International Institute of Information Technology (I²IT)
 
Security Development Life Cycle
Directorate of Information Security | Ditjen Aptika
 
According To The Author Of “Build A Streamlined Refinery”,
Jill Lyons
 
Butler
Thomas Butler, CISSP, CEH, CHFI, CISA, CPA, CIA
 
IRJET- Biometric Attendance Management System using Raspberry Pi
IRJET Journal
 
Penetration testing dont just leave it to chance
Dr. Anish Cheriyan (PhD)
 
Cloud Computing
International Institute of Information Technology (I²IT)
 
Phishing Website Detection Paradigm using XGBoost
IRJET Journal
 
Java as Object Oriented Programming Language
International Institute of Information Technology (I²IT)
 
Automatic Insider Threat Detection in E-mail System using N-gram Technique
IRJET Journal
 
Ad

More from International Institute of Information Technology (I²IT) (20)

PPTX
Minimization of DFA
International Institute of Information Technology (I²IT)
 
PPTX
Understanding Natural Language Processing
International Institute of Information Technology (I²IT)
 
PPTX
Professional Ethics & Etiquette: What Are They & How Do I Get Them?
International Institute of Information Technology (I²IT)
 
PPTX
Writing Skills: Importance of Writing Skills
International Institute of Information Technology (I²IT)
 
PPTX
Professional Communication | Introducing Oneself
International Institute of Information Technology (I²IT)
 
PPTX
Servlet: A Server-side Technology
International Institute of Information Technology (I²IT)
 
PPTX
What Is Jenkins? Features and How It Works
International Institute of Information Technology (I²IT)
 
PPTX
Hypothesis-Testing
International Institute of Information Technology (I²IT)
 
PPTX
Data Science, Big Data, Data Analytics
International Institute of Information Technology (I²IT)
 
PPTX
Sentiment Analysis in Machine Learning
International Institute of Information Technology (I²IT)
 
PPTX
What Is Cloud Computing?
International Institute of Information Technology (I²IT)
 
PPT
Importance of Theory of Computations
International Institute of Information Technology (I²IT)
 
PPTX
Data Visualization - How to connect Microsoft Forms to Power BI
International Institute of Information Technology (I²IT)
 
PPTX
AVL Tree Explained
International Institute of Information Technology (I²IT)
 
PPTX
Yoga To Fight & Win Against COVID-19
International Institute of Information Technology (I²IT)
 
PPTX
LR(0) PARSER
International Institute of Information Technology (I²IT)
 
PPTX
Land Pollution - Causes, Effects & Solution
International Institute of Information Technology (I²IT)
 
PPTX
Sampling Theorem and Band Limited Signals
International Institute of Information Technology (I²IT)
 
PPTX
Types of Sampling in Analog Communication
International Institute of Information Technology (I²IT)
 
PPTX
Pulse Modulation - Classification & Case Study
International Institute of Information Technology (I²IT)
 
Minimization of DFA
International Institute of Information Technology (I²IT)
 
Understanding Natural Language Processing
International Institute of Information Technology (I²IT)
 
Professional Ethics & Etiquette: What Are They & How Do I Get Them?
International Institute of Information Technology (I²IT)
 
Writing Skills: Importance of Writing Skills
International Institute of Information Technology (I²IT)
 
Professional Communication | Introducing Oneself
International Institute of Information Technology (I²IT)
 
Servlet: A Server-side Technology
International Institute of Information Technology (I²IT)
 
What Is Jenkins? Features and How It Works
International Institute of Information Technology (I²IT)
 
Hypothesis-Testing
International Institute of Information Technology (I²IT)
 
Data Science, Big Data, Data Analytics
International Institute of Information Technology (I²IT)
 
Sentiment Analysis in Machine Learning
International Institute of Information Technology (I²IT)
 
What Is Cloud Computing?
International Institute of Information Technology (I²IT)
 
Importance of Theory of Computations
International Institute of Information Technology (I²IT)
 
Data Visualization - How to connect Microsoft Forms to Power BI
International Institute of Information Technology (I²IT)
 
AVL Tree Explained
International Institute of Information Technology (I²IT)
 
Yoga To Fight & Win Against COVID-19
International Institute of Information Technology (I²IT)
 
LR(0) PARSER
International Institute of Information Technology (I²IT)
 
Land Pollution - Causes, Effects & Solution
International Institute of Information Technology (I²IT)
 
Sampling Theorem and Band Limited Signals
International Institute of Information Technology (I²IT)
 
Types of Sampling in Analog Communication
International Institute of Information Technology (I²IT)
 
Pulse Modulation - Classification & Case Study
International Institute of Information Technology (I²IT)
 

Recently uploaded (20)

PDF
Encapsulation theory and applications.pdf
gurumoop
 
PDF
Architecting across the Boundaries of two Complex Domains - Healthcare & Tech...
Peter Tan
 
PDF
Per capita expenditure prediction using model stacking based on satellite ima...
IAESIJAI
 
PDF
Empathic Computing: Creating Shared Understanding
Mark Billinghurst
 
PDF
Approach and Philosophy of On baking technology
30anthuong17
 
PDF
TokAI - TikTok AI Agent : The First AI Application That Analyzes 10,000+ Vira...
SOFTTECHHUB
 
PDF
MIND Revenue Release Quarter 2 2025 Press Release
MIND CTI
 
PPTX
ACSFv1EN-58255 AWS Academy Cloud Security Foundations.pptx
23bcla24
 
PPTX
20250228 LYD VKU AI Blended-Learning.pptx
DatVoNgoc
 
PDF
cuic standard and advanced reporting.pdf
SimoneTitaniumTomase
 
PDF
NewMind AI Weekly Chronicles - August'25 Week I
NewMind AI
 
PPTX
KOM of Painting work and Equipment Insulation REV00 update 25-dec.pptx
muhammadmuneebnaeem7
 
PPT
“AI and Expert System Decision Support & Business Intelligence Systems”
ZubinRadhakrishnan
 
PDF
Electronic commerce courselecture one. Pdf
OmerMohamed64
 
PDF
Build a system with the filesystem maintained by OSTree @ COSCUP 2025
Jian-Hong Pan
 
PPTX
Cloud computing and distributed systems.
kkkkkhan
 
PPTX
Understanding_Digital_Forensics_Presentation.pptx
ImranKhan423233
 
PDF
Blue Purple Modern Animated Computer Science Presentation.pdf.pdf
Akar16
 
PPTX
Spectroscopy.pptx food analysis technology
nawahassan45
 
PDF
Dropbox Q2 2025 Financial Results & Investor Presentation
Dropbox
 
Encapsulation theory and applications.pdf
gurumoop
 
Architecting across the Boundaries of two Complex Domains - Healthcare & Tech...
Peter Tan
 
Per capita expenditure prediction using model stacking based on satellite ima...
IAESIJAI
 
Empathic Computing: Creating Shared Understanding
Mark Billinghurst
 
Approach and Philosophy of On baking technology
30anthuong17
 
TokAI - TikTok AI Agent : The First AI Application That Analyzes 10,000+ Vira...
SOFTTECHHUB
 
MIND Revenue Release Quarter 2 2025 Press Release
MIND CTI
 
ACSFv1EN-58255 AWS Academy Cloud Security Foundations.pptx
23bcla24
 
20250228 LYD VKU AI Blended-Learning.pptx
DatVoNgoc
 
cuic standard and advanced reporting.pdf
SimoneTitaniumTomase
 
NewMind AI Weekly Chronicles - August'25 Week I
NewMind AI
 
KOM of Painting work and Equipment Insulation REV00 update 25-dec.pptx
muhammadmuneebnaeem7
 
“AI and Expert System Decision Support & Business Intelligence Systems”
ZubinRadhakrishnan
 
Electronic commerce courselecture one. Pdf
OmerMohamed64
 
Build a system with the filesystem maintained by OSTree @ COSCUP 2025
Jian-Hong Pan
 
Cloud computing and distributed systems.
kkkkkhan
 
Understanding_Digital_Forensics_Presentation.pptx
ImranKhan423233
 
Blue Purple Modern Animated Computer Science Presentation.pdf.pdf
Akar16
 
Spectroscopy.pptx food analysis technology
nawahassan45
 
Dropbox Q2 2025 Financial Results & Investor Presentation
Dropbox
 

Supervised Learning in Cybersecurity

  • 1. SUPERVISED LEARNING IN CYBERSECURITY Ramkrushna M. Assistant Professor International Institute of Information Technology, I²IT, P-14, Rajiv Gandhi Infotech Park, Hinjawadi Phase 1, Pune - 411 057 Phone - +91 20 22933441/2/3 | Website - www.isquareit.edu.in | Email - info@isquareit.edu.in
  • 2. Contents Introduction Motivation Objectives Flow Process ApplicationsImplementation International Institute of Information Technology, I²IT, P-14, Rajiv Gandhi Infotech Park, Hinjawadi Phase 1, Pune - 411 057 Phone - +91 20 22933441/2/3 | Website - www.isquareit.edu.in | Email - info@isquareit.edu.in
  • 3. Introduction Cybersecurity: Cyber Security, it is also called as information security. It works on three primary principles integrity, confidentiality, and availability (ICA) of information. It contains set ethical tools, risk management techniques and best practices created to protect networks, devices, programs, and data from unauthorized access. Malware: Malware, it is kind of software created to harm to a computer, server, client, or computer network. Examples of Malware's are computer viruses, worms, Trojan horses, ransomware, spyware.
  • 4. Motivation • The technology is moving towards its peak it's important to protect the information/data from intruders(Black hat). • Data is the primary key for any infrastructure so it is necessary to safeguard the data from theft or any kind of tampering. • Here's where cybersecurity comes into the picture to protect us from any kind of malicious activity. International Institute of Information Technology, I²IT, P-14, Rajiv Gandhi Infotech Park, Hinjawadi Phase 1, Pune - 411 057 Phone - +91 20 22933441/2/3 | Website - www.isquareit.edu.in | Email - info@isquareit.edu.in
  • 5. Objectives Malware analysis with the help of ML and PE header files. To classify the whether the file is malicious or not. To build malware detection application with the help of ExtraTreeClassifier , RandomForestClassifier and PE header files. International Institute of Information Technology, I²IT, P-14, Rajiv Gandhi Infotech Park, Hinjawadi Phase 1, Pune - 411 057 Phone - +91 20 22933441/2/3 | Website - www.isquareit.edu.in | Email - info@isquareit.edu.in
  • 6. Flow Process MALWARE DETECTION USING PE HEADERS Start Dataset(PE files) ExtraTreeClassifier RandomForest Output International Institute of Information Technology, I²IT, P-14, Rajiv Gandhi Infotech Park, Hinjawadi Phase 1, Pune - 411 057 Phone - +91 20 22933441/2/3 | Website - www.isquareit.edu.in | Email - info@isquareit.edu.in
  • 7. Implementation Steps : • In order to implement machine learning in malware analysis we have taken the help of tools , pe header files , and help of machine learning algorithms such as extra tree classifier and random forest. • Here have chosen ExtraTreeClassisfier and Random forest over other ml algo such as gradient boost . • The main reason advantage of random forest classifier over gradient boost is that the random forest create the multitude of decisssion tree. More the number of tree better the classification and hence we get a better result. • Input files----->PE Header • ML Algorithm->ExtraTreesClassifier / Random Forest • Find Accurace Ratio • Classify the Malware International Institute of Information Technology, I²IT, P-14, Rajiv Gandhi Infotech Park, Hinjawadi Phase 1, Pune - 411 057 Phone - +91 20 22933441/2/3 | Website - www.isquareit.edu.in | Email - info@isquareit.edu.in
  • 8. Portable Executable (PE) File Format • The Portable Executable (PE) format is a file format for executables, object code, and DLLs, used in 32-bit and 64-bit versions of Windows operating systems. • The PE file format was defined to provide the best way for the Windows Operating System to execute code and also to store the essential data which is needed to run a program. Portable Executable File Format is derived from the Microsoft Common Object File Format (COFF). International Institute of Information Technology, I²IT, P-14, Rajiv Gandhi Infotech Park, Hinjawadi Phase 1, Pune - 411 057 Phone - +91 20 22933441/2/3 | Website - www.isquareit.edu.in | Email - info@isquareit.edu.in
  • 9. Step by Step Classification : Dataset (PE files): PE is file format for dll, executables, object codes for windows OS. ExtraTreeClassifier: Used for optimizing dataset i.e Splitting/partitioning the legitimate and Non legitimate dataset RandomForestClassifier: Method for classification by constructing multitude of decision tree at training tree International Institute of Information Technology, I²IT, P-14, Rajiv Gandhi Infotech Park, Hinjawadi Phase 1, Pune - 411 057 Phone - +91 20 22933441/2/3 | Website - www.isquareit.edu.in | Email - info@isquareit.edu.in
  • 10. Applications: MACHINE LEARNING CAN PLAY A GREAT ROLE IN CYBERSECURITY FIELD .HERE ARE THE SOME APPLICATION OF MACHINE LEARNING IN MALWARE . ML APPLIED IN MALWARE ANALYSIS HELP US TO ANALYSIS/CLASSIFIE THE DIFFERENT TYPE OF MALWARE. ML ALONG WITH NEURAL NETWORK CAN HELP US TO IDENTIFIY AND CLASSIFIE THR MALWARE DURING REAL TIME. SO AS THE PRECAUTION CAN BE TAKEN BEFORE IT IS SPREAD/CAUSE HARM. ML APPLIED IN DETECTING THE MALWARE WILL HELP US TO BUILD BETTER ANTIVIRUSE THAT WILL GIVE BETTER PROTECTION THE IT INFRASTRUCTURE AND ALSO PEOPLE. International Institute of Information Technology, I²IT, P-14, Rajiv Gandhi Infotech Park, Hinjawadi Phase 1, Pune - 411 057 Phone - +91 20 22933441/2/3 | Website - www.isquareit.edu.in | Email - info@isquareit.edu.in
  • 11. THANK-YOU Ramkrushna M. Assistant Professor International Institute of Information Technology, I²IT, P-14, Rajiv Gandhi Infotech Park, Hinjawadi Phase 1, Pune - 411 057 Phone - +91 20 22933441/2/3 | Website - www.isquareit.edu.in | Email - info@isquareit.edu.in http://www.isquareit.edu.in/