The Computer Security Group at UCSB::Projects

Intrusion Detection

Cybaware: A Cyber Awareness Framework for Attack Analysis, Prediction, and Visualization
libAnomaly: A framework for the development of anomaly detection systems
Web-based Intrusion Detection: Research on the detection of web-based attacks
Reverse Proxy-based Web Attack Mitigation: Research on the detection of web-based attacks
Alert Correlation: Tools and techniques for the correlation of intrusion detection alerts
STAT: A framework for developing intrusion detection systems based on the State Transition Analysis Technique
HSID: High-Speed Intrusion Detection
Mnemosyne: A tool to implement short-term memory

E-Voting Security: Analysis of the security of e-voting systems.
Disasm: Disassembly of obfuscated binary code
iTrace: Dynamic tracing of binary code execution
Fuzzing: Advanced fuzzing techniques for stateful protocols
Sploit: A tool for the generation of mutant attacks
Mucus: A tool for the generation of attack traffic that matches NIDS signatures
Smart Phone Security: Vulnerability analysis of Smart Phones
Automated Mimicry Attacks: A technique to automatically perform multi-step mimicry attacks
ViSe: An infrastrcucture for attack execution and forensic analysis
NetMap: A composable approach to network modeling and discovery
Browser Security: Vulnerability analysis of World-Wide Web browsers

Torpig Analysis: An insider view of the characteristics of a real-world botnet
Spyware Detection: Behavior-based spyware detection
Worm Detection: Graph-based detection of polymorphic worms