Book Image

Hands-On Machine Learning for Cybersecurity

By : Soma Halder, Sinan Ozdemir

Book Image

Hands-On Machine Learning for Cybersecurity

By: Soma Halder, Sinan Ozdemir

Overview of this book

Cyber threats today are one of the costliest losses that an organization can face. In this book, we use the most efficient tool to solve the big problems that exist in the cybersecurity domain. The book begins by giving you the basics of ML in cybersecurity using Python and its libraries. You will explore various ML domains (such as time series analysis and ensemble modeling) to get your foundations right. You will implement various examples such as building system to identify malicious URLs, and building a program to detect fraudulent emails and spam. Later, you will learn how to make effective use of K-means algorithm to develop a solution to detect and alert you to any malicious activity in the network. Also learn how to implement biometrics and fingerprint to validate whether the user is a legitimate user or not. Finally, you will see how we change the game with TensorFlow and learn how deep learning is effective for creating models and training systems

Preface

Who this book is for

What this book covers

To get the most out of this book

Free Chapter

Basics of Machine Learning in Cybersecurity

Basics of Machine Learning in Cybersecurity

What is machine learning?

Time Series Analysis and Ensemble Modeling

Time Series Analysis and Ensemble Modeling

What is a time series?

Classes of time series models

Time series decomposition

Use cases for time series

Time series analysis in cybersecurity

Time series trends and seasonal spikes

Predicting DDoS attacks

Ensemble learning methods

Voting ensemble method to detect cyber attacks

Segregating Legitimate and Lousy URLs

Segregating Legitimate and Lousy URLs

Introduction to the types of abnormalities in URLs

Using heuristics to detect malicious pages

Using machine learning to detect malicious URLs

Logistic regression to detect malicious URLs

SVM to detect malicious URLs

Multiclass classification for URL classification

Knocking Down CAPTCHAs

Knocking Down CAPTCHAs

Characteristics of CAPTCHA

Using artificial intelligence to crack CAPTCHA

Using Data Science to Catch Email Fraud and Spam

Using Data Science to Catch Email Fraud and Spam

Efficient Network Anomaly Detection Using k-means

Efficient Network Anomaly Detection Using k-means

Stages of a network attack

Dealing with lateral movement in networks

Using Windows event logs to detect network anomalies

Ingesting active directory data

Detecting anomalies in a network with k-means

Decision Tree and Context-Based Malicious Event Detection

Decision Tree and Context-Based Malicious Event Detection

Malicious data injection within databases

Malicious injections in wireless sensors

Revisiting malicious URL detection with decision trees

Catching Impersonators and Hackers Red Handed

Catching Impersonators and Hackers Red Handed

Understanding impersonation

Different types of impersonation fraud

Levenshtein distance

Changing the Game with TensorFlow

Changing the Game with TensorFlow

Introduction to TensorFlow

Installation of TensorFlow

TensorFlow for Windows users

Hello world in TensorFlow

Importing the MNIST dataset

Computation graphs

Tensor processing unit

Using TensorFlow for intrusion detection

Financial Fraud and How Deep Learning Can Mitigate It

Financial Fraud and How Deep Learning Can Mitigate It

Machine learning to detect financial fraud

Logistic regression classifier – under-sampled data

Deep learning time

Case Studies

Introduction to our password dataset

Other Books You May Enjoy

Other Books You May Enjoy

Leave a review - let other readers know what you think

Customer Reviews

5 star

0

4 star

0

3 star

0

2 star

0

1 star

0

Malicious data injection within databases

Better know as SQL injections, these attacks manipulate SQL queries, and are hence able to manage data sources residing in different databases. SQL injections basically trick databases to produce an undesired output. These could include privilege escalation by granting all access rights, deleting or dropping entire tables with potential PII data, enabling data ex-filtration by running select * queries, and then dumping entire data in external devices.