The cyber world is plagued with ever-evolving malware that readily infiltrate all defense
mechanisms, operate viciously unbeknownst to the user, and surreptitiously exfiltrate …

Software obfuscation has always been a controversially discussed research area. While
theoretical results indicate that provably secure obfuscation in general is impossible, its …

Numerous attacks, such as worms, phishing, and botnets, threaten the availability of the
Internet, the integrity of its hosts, and the privacy of its users. A core element of defense …

Malicious code (or Malware) is defined as software that fulfills the deliberately harmful intent
of an attacker. Malware analysis is the process of determining the behavior and purpose of a …

6.424, 627 B1 7/2002 Sorhaug et al. 8,069,484 B2 11/2011 McMillan et al. 6,484.315 B1
11/2002 Ziese 8,087.086 B1 12/2011 Lai et al. 6,487,666 B1 11/2002 Shanklin et al. 8 …

Advanced cyber attacks consist of multiple stages aimed at being stealthy and elusive. Such
attack patterns leave their footprints spatio-temporally dispersed across many different logs …

According to one embodiment, a system comprises one or more counters; comparison logic;
and one or more hardware processors communicatively coupled to the one or more …

Automated dynamic malware analysis systems are important in combating the proliferation
of modern malware. Unfortunately, malware can often easily detect and evade these …

Modern CPU architectures offer strong isolation guarantees towards user applications in the
form of enclaves. However, Intel's threat model for SGX assumes fully trusted enclaves and …

Malware programs that incorporate trigger-based behavior initiate malicious activities based
on conditions satisfied only by specific inputs. State-of-the-art malware analyzers discover …