Web Security
I work on developing novel tools and techniques to secure web-based applications. This is achieved by using a composition of vulnerability analysis, intrusion detection, and client-side solutions.
Malware and Badware Analysis
My research focuses on identifying both malicious code (malware) and faulty applications that can be exploited to compromise a system (badware). In particular, I am exploring how behavior-based techniques can be leveraged to reliably characterize malicious software.
Intrusion Detection
My research on intrusion detection has mainly focused on frameworks for the development of intrusion detection systems, both misuse-based and anomaly-based. In addition, I work on techniques for the testing of intrusion detection systems by using exploit mutation techniques.