An Advanced Memory Introspection Technique to Detect Process Injection and Malwares of Varied Types in a Virtualized Environment

10.36227/techrxiv.14904519 ◽

2021 ◽

Author(s):

Darshan Tank ◽

Akshai Aggarwal ◽

Nirbhay Kumar Chaubey

Keyword(s):

Open Source ◽

Research Work ◽

High Accuracy ◽

Malicious Code ◽

Experimental Results ◽

The Other ◽

Address Space ◽

Detection Approach ◽

Injection Techniques ◽

Memory Introspection

Today’s advanced malware can easily avoid detection by adopting several evasion strategies. Process injection is one such strategy to evade detection from security products since the execution is masked under a legitimate process. Malicious activities are often enforced by injecting malicious code into running processes, which is often undetectable by traditional antimalware techniques. Various process injection techniques are employed by malware to gain more stealth and to bypass security tools/products. Our main focus in this research work is to propose an entirely out-of-VM approach based on advanced memory introspection to detect process injection of varied types in a virtualized environment. We have implemented a plugin using the open-source Volatility tool and successfully tested it on live VMs and malware-infected memory images. Experimental results show that our model classifies injected memory regions with high accuracy and completeness and has more true positives and fewer false positives when compared to other existing systems/solutions. Our proposed detection approach assures precise and reliable results and exactly pinpoint injected memory regions. Our proposed system detects an actual malicious memory region in the virtual address space of an infected process. Our proposed system detects more malware families and dominates the other approaches in all evaluation metrics.

Download Full-text

Two particle picking procedures for filamentous proteins: SPHIRE-crYOLO filament mode and SPHIRE-STRIPER

10.1101/2020.02.28.969196 ◽

2020 ◽

Cited By ~ 1

Author(s):

Thorsten Wagner ◽

Luca Lusnig ◽

Sabrina Pospich ◽

Markus Stabrin ◽

Fabian Schönfeld ◽

...

Keyword(s):

Neural Network ◽

Deep Neural Network ◽

Molecular Complexes ◽

High Accuracy ◽

The Other ◽

Line Detection ◽

Data Sets ◽

Detection Approach ◽

Selection Of

AbstractStructure determination of filamentous molecular complexes involves the selection of filaments from cryo-EM micrographs. The automatic selection of helical specimens is particularly difficult and thus many challenging samples with issues such as contamination or aggregation are still manually picked. Here we present two approaches for selecting filamentous complexes: one uses a trained deep neural network to identify the filaments and is integrated in SPHIRE-crYOLO, the other one, called SPHIRE-STRIPER, is based on a classical line detection approach. The advantage of the crYOLO based procedure is that it accurately performs on very challenging data sets and selects filaments with high accuracy. Although STRIPER is less precise, the user benefits from less intervention, since in contrast to crYOLO, STRIPER does not require training. We evaluate the performance of both procedures on tobacco mosaic virus and filamentous F-actin data sets to demonstrate the robustness of each method.

Download Full-text

Two particle-picking procedures for filamentous proteins: SPHIRE-crYOLO filament mode and SPHIRE-STRIPER

Acta Crystallographica Section D Structural Biology ◽

10.1107/s2059798320007342 ◽

2020 ◽

Vol 76 (7) ◽

pp. 613-620

Author(s):

Thorsten Wagner ◽

Luca Lusnig ◽

Sabrina Pospich ◽

Markus Stabrin ◽

Fabian Schönfeld ◽

...

Keyword(s):

Neural Network ◽

Deep Neural Network ◽

Molecular Complexes ◽

High Accuracy ◽

The Other ◽

Line Detection ◽

Data Sets ◽

Detection Approach ◽

Selection Of

Structure determination of filamentous molecular complexes involves the selection of filaments from cryo-EM micrographs. The automatic selection of helical specimens is particularly difficult, and thus many challenging samples with issues such as contamination or aggregation are still manually picked. Here, two approaches for selecting filamentous complexes are presented: one uses a trained deep neural network to identify the filaments and is integrated in SPHIRE-crYOLO, while the other, called SPHIRE-STRIPER, is based on a classical line-detection approach. The advantage of the crYOLO-based procedure is that it performs accurately on very challenging data sets and selects filaments with high accuracy. Although STRIPER is less precise, the user benefits from less intervention, since in contrast to crYOLO, STRIPER does not require training. The performance of both procedures on Tobacco mosaic virus and filamentous F-actin data sets is described to demonstrate the robustness of each method.

Download Full-text

Investigation of Multi-Material Bird Models for Predicting Impact Loads

Volume 5: Structures and Dynamics, Parts A and B ◽

10.1115/gt2008-51005 ◽

2008 ◽

Cited By ~ 2

Author(s):

Lakshmi S. Nizampatnam ◽

Walter J. Horn

Keyword(s):

Smoothed Particle Hydrodynamics ◽

Research Work ◽

Material Model ◽

Experimental Results ◽

The Other ◽

Impact Loads ◽

Excellent Correlation ◽

Particle Hydrodynamics ◽

Bird Impact ◽

Smoothed Particle

This research work investigated the use of multi-material bird models for accurately predicting bird impact loads. Numerical simulations carried out using the SPH (Smoothed Particle Hydrodynamics) technique of LS-Dyna showed excellent correlation with the experimental results. The multi-material bird models of this work are more rigorous than in any previously published work, and include a realistic bird shape. Each material model was distinct, having its own density value (different from the other materials) and an associated equation of state. Results indicated that using a multi-material bird with various combinations of materials permits better correlation with experimental results.

Download Full-text

The Influence of Water Regime on the Performance of Aquatic Plants

Water Science & Technology ◽

10.2166/wst.1994.0174 ◽

1994 ◽

Vol 29 (4) ◽

pp. 127-132 ◽

Cited By ~ 6

Author(s):

Naomi Rea ◽

George G. Ganf

Keyword(s):

Deep Water ◽

Aquatic Plants ◽

Water Regime ◽

Optimal Performance ◽

Experimental Results ◽

The Other ◽

Full Potential ◽

Influence Of Water ◽

Emergent Species

Experimental results demonstrate bow small differences in depth and water regime have a significant affect on the accumulation and allocation of nutrients and biomass. Because the performance of aquatic plants depends on these factors, an understanding of their influence is essential to ensure that systems function at their full potential. The responses differed for two emergent species, indicating that within this morphological category, optimal performance will fall at different locations across a depth or water regime gradient. The performance of one species was unaffected by growth in mixture, whereas the other performed better in deep water and worse in shallow.

Download Full-text

Influence of Physicochemical Properties and Parent Material on Chromium Fractionation in Soils

Processes ◽

10.3390/pr9061073 ◽

2021 ◽

Vol 9 (6) ◽

pp. 1073

Author(s):

Claudia Campillo-Cora ◽

Laura Rodríguez-González ◽

Manuel Arias-Estévez ◽

David Fernández-Calviño ◽

Diego Soto-Gómez

Keyword(s):

Physicochemical Properties ◽

Contaminated Soils ◽

Research Work ◽

Parent Material ◽

The Other ◽

Oxidation States ◽

Diethylenetriaminepentaacetic Acid ◽

Remediation Strategies ◽

Exchangeable Aluminum ◽

Efficient Extraction

Chromium is an element that possess several oxidation states and can easily pass from one to another, so its behavior in soils is very complex. For this reason, determining its fate in the environment can be difficult. In this research work we tried to determine which factors affect the chromium fractionation in natural soils, conditioning chromium mobility. We paid special attention to the parent material. For this purpose, extraction experiments were carried out on spiked soils incubated for 50–60 days, using H2O, CaCl2 and diethylenetriaminepentaacetic acid (DTPA). The most efficient extraction rate in all soils was achieved using water, followed by CaCl2 and DTPA. We obtained models with an adjusted R2 of 0.8097, 0.8471 and 0.7509 for the H2O Cr, CaCl2 Cr and DTPA Cr respectively. All models were influenced by the amount of chromium added and the parent material: amphibolite and granite influenced the amount of H2O Cr extracted, and schist affected the other two fractions (CaCl2 and DTPA). Soil texture also played an important role in the chromium extraction, as well as the amounts of exchangeable aluminum and magnesium, and the bioavailable phosphorus. We concluded that it is possible to make relatively accurate predictions of the behavior of the different Cr fractions studied, so that optimized remediation strategies for chromium-contaminated soils can be designed on the basis of a physicochemical soil characterization.

Download Full-text

NetCleave: an open-source algorithm for predicting C-terminal antigen processing for MHC-I and MHC-II

Scientific Reports ◽

10.1038/s41598-021-92632-y ◽

2021 ◽

Vol 11 (1) ◽

Author(s):

Pep Amengual-Rigo ◽

Victor Guallar

Keyword(s):

Open Source ◽

Antigen Processing ◽

High Accuracy ◽

Biological Processes ◽

Mhc I ◽

Mhc Ii ◽

Prediction Tools ◽

Immunogenic Peptides ◽

Physicochemical Descriptors ◽

Peptide Presentation

AbstractAntigens presented on the cell surface have been subjected to multiple biological processes. Among them, C-terminal antigen processing constitutes one of the main bottlenecks of the peptide presentation pathways, as it delimits the peptidome that will be subjected downstream. Here, we present NetCleave, an open-source and retrainable algorithm for the prediction of the C-terminal antigen processing for both MHC-I and MHC-II pathways. NetCleave architecture consists of a neural network trained on 46 different physicochemical descriptors of the cleavage site amino acids. Our results demonstrate that prediction of C-terminal antigen processing achieves high accuracy on MHC-I (AUC of 0.91), while it remains challenging for MHC-II (AUC of 0.66). Moreover, we evaluated the performance of NetCleave and other prediction tools for the evaluation of four independent immunogenicity datasets (H2-Db, H2-Kb, HLA-A*02:01 and HLA-B:07:02). Overall, we demonstrate that NetCleave stands out as one of the best algorithms for the prediction of C-terminal processing, and we provide one of the first evidence that C-terminal processing predictions may help in the discovery of immunogenic peptides.

Download Full-text

Mining discriminative patches for script identification in natural scene images

Journal of Intelligent & Fuzzy Systems ◽

10.3233/jifs-200260 ◽

2021 ◽

Vol 40 (1) ◽

pp. 551-563

Author(s):

Liqiong Lu ◽

Dong Wu ◽

Ziwei Tang ◽

Yaohua Yi ◽

Faliang Huang

Keyword(s):

Neural Networks ◽

Experimental Results ◽

The Other ◽

Natural Scene ◽

Fixed Size ◽

Script Identification ◽

Aspect Ratios ◽

Novel Approach ◽

Public Datasets ◽

Natural Scene Images

This paper focuses on script identification in natural scene images. Traditional CNNs (Convolution Neural Networks) cannot solve this problem perfectly for two reasons: one is the arbitrary aspect ratios of scene images which bring much difficulty to traditional CNNs with a fixed size image as the input. And the other is that some scripts with minor differences are easily confused because they share a subset of characters with the same shapes. We propose a novel approach combing Score CNN, Attention CNN and patches. Attention CNN is utilized to determine whether a patch is a discriminative patch and calculate the contribution weight of the discriminative patch to script identification of the whole image. Score CNN uses a discriminative patch as input and predict the score of each script type. Firstly patches with the same size are extracted from the scene images. Secondly these patches are used as inputs to Score CNN and Attention CNN to train two patch-level classifiers. Finally, the results of multiple discriminative patches extracted from the same image via the above two classifiers are fused to obtain the script type of this image. Using patches with the same size as inputs to CNN can avoid the problems caused by arbitrary aspect ratios of scene images. The trained classifiers can mine discriminative patches to accurately identify some confusing scripts. The experimental results show the good performance of our approach on four public datasets.

Download Full-text

DV-DVFS: merging data variety and DVFS technique to manage the energy consumption of big data processing

Journal Of Big Data ◽

10.1186/s40537-021-00437-7 ◽

2021 ◽

Vol 8 (1) ◽

Author(s):

Hossein Ahmadvand ◽

Fouzhan Foroutan ◽

Mahmood Fathy

Keyword(s):

Big Data ◽

Energy Consumption ◽

Processing Time ◽

Experimental Results ◽

The Other ◽

Data Sets ◽

Multiple Sources ◽

Evaluation Phase ◽

Dynamic Voltage ◽

Processing Resources

AbstractData variety is one of the most important features of Big Data. Data variety is the result of aggregating data from multiple sources and uneven distribution of data. This feature of Big Data causes high variation in the consumption of processing resources such as CPU consumption. This issue has been overlooked in previous works. To overcome the mentioned problem, in the present work, we used Dynamic Voltage and Frequency Scaling (DVFS) to reduce the energy consumption of computation. To this goal, we consider two types of deadlines as our constraint. Before applying the DVFS technique to computer nodes, we estimate the processing time and the frequency needed to meet the deadline. In the evaluation phase, we have used a set of data sets and applications. The experimental results show that our proposed approach surpasses the other scenarios in processing real datasets. Based on the experimental results in this paper, DV-DVFS can achieve up to 15% improvement in energy consumption.

Download Full-text

Deep Learning Based Pavement Inspection Using Self-Reconfigurable Robot

Sensors ◽

10.3390/s21082595 ◽

2021 ◽

Vol 21 (8) ◽

pp. 2595

Author(s):

Balakrishnan Ramalingam ◽

Abdullah Aamir Hayat ◽

Mohan Rajesh Elara ◽

Braulio Félix Gómez ◽

Lim Yi ◽

...

Keyword(s):

Deep Learning ◽

Semantic Segmentation ◽

High Accuracy ◽

Experimental Results ◽

Mobile Mapping ◽

Mapping System ◽

Mobile Mapping System ◽

Reconfigurable Robot ◽

Nvidia Gpu ◽

Inspection Task

The pavement inspection task, which mainly includes crack and garbage detection, is essential and carried out frequently. The human-based or dedicated system approach for inspection can be easily carried out by integrating with the pavement sweeping machines. This work proposes a deep learning-based pavement inspection framework for self-reconfigurable robot named Panthera. Semantic segmentation framework SegNet was adopted to segment the pavement region from other objects. Deep Convolutional Neural Network (DCNN) based object detection is used to detect and localize pavement defects and garbage. Furthermore, Mobile Mapping System (MMS) was adopted for the geotagging of the defects. The proposed system was implemented and tested with the Panthera robot having NVIDIA GPU cards. The experimental results showed that the proposed technique identifies the pavement defects and litters or garbage detection with high accuracy. The experimental results on the crack and garbage detection are presented. It is found that the proposed technique is suitable for deployment in real-time for garbage detection and, eventually, sweeping or cleaning tasks.

Download Full-text