Book Image

Hands-On Machine Learning for Cybersecurity

By : Soma Halder, Sinan Ozdemir
Book Image

Hands-On Machine Learning for Cybersecurity

By: Soma Halder, Sinan Ozdemir

Overview of this book

Cyber threats today are one of the costliest losses that an organization can face. In this book, we use the most efficient tool to solve the big problems that exist in the cybersecurity domain. The book begins by giving you the basics of ML in cybersecurity using Python and its libraries. You will explore various ML domains (such as time series analysis and ensemble modeling) to get your foundations right. You will implement various examples such as building system to identify malicious URLs, and building a program to detect fraudulent emails and spam. Later, you will learn how to make effective use of K-means algorithm to develop a solution to detect and alert you to any malicious activity in the network. Also learn how to implement biometrics and fingerprint to validate whether the user is a legitimate user or not. Finally, you will see how we change the game with TensorFlow and learn how deep learning is effective for creating models and training systems

Related Content you might be interested in

Current Title:

Small book image
Hands-On Machine Learning for Cybersecurity
Soma Halder | Sinan Ozdemir
Dec, 2018 | 318 pages
Small book image
Mastering Machine Learning for Penetration Testing
Chiheb Chebbi
Jun, 2018 | 276 pages
Small book image
Machine Learning for Cybersecurity Cookbook
Emmanuel Tsukerman
Nov, 2019 | 346 pages
Small book image
Hands-On Artificial Intelligence for Cybersecurity
Alessandro Parisi
Aug, 2019 | 342 pages
Table of Contents (13 chapters)
Preface
Preface
Who this book is for
What this book covers
To get the most out of this book
Get in touch
Free Chapter
1
Basics of Machine Learning in Cybersecurity
Basics of Machine Learning in Cybersecurity
What is machine learning?
Summary
2
Time Series Analysis and Ensemble Modeling
Time Series Analysis and Ensemble Modeling
What is a time series?
Classes of time series models
Time series decomposition
Use cases for time series
Time series analysis in cybersecurity
Time series trends and seasonal spikes
Predicting DDoS attacks
Ensemble learning methods
Voting ensemble method to detect cyber attacks
Summary
3
Segregating Legitimate and Lousy URLs
Segregating Legitimate and Lousy URLs
Introduction to the types of abnormalities in URLs
Using heuristics to detect malicious pages
Using machine learning to detect malicious URLs
Logistic regression to detect malicious URLs
SVM to detect malicious URLs
Multiclass classification for URL classification
Summary
4
Knocking Down CAPTCHAs
Knocking Down CAPTCHAs
Characteristics of CAPTCHA
Using artificial intelligence to crack CAPTCHA
Summary
5
Using Data Science to Catch Email Fraud and Spam
Using Data Science to Catch Email Fraud and Spam
Email spoofing
Spam detection
Summary
6
Efficient Network Anomaly Detection Using k-means
Efficient Network Anomaly Detection Using k-means
Stages of a network attack
Dealing with lateral movement in networks
Using Windows event logs to detect network anomalies
Ingesting active directory data
Data parsing
Modeling
Detecting anomalies in a network with k-means
Summary
7
Decision Tree and Context-Based Malicious Event Detection
Decision Tree and Context-Based Malicious Event Detection
Adware
Bots
Bugs
Ransomware
Rootkit
Spyware
Trojan horses
Viruses
Worms
Malicious data injection within databases
Malicious injections in wireless sensors
Use case
Revisiting malicious URL detection with decision trees
Summary
8
Catching Impersonators and Hackers Red Handed
Catching Impersonators and Hackers Red Handed
Understanding impersonation
Different types of impersonation fraud
Levenshtein distance
Summary
9
Changing the Game with TensorFlow
Changing the Game with TensorFlow
Introduction to TensorFlow
Installation of TensorFlow
TensorFlow for Windows users
Hello world in TensorFlow
Importing the MNIST dataset
Computation graphs
Tensor processing unit
Using TensorFlow for intrusion detection
Summary
10
Financial Fraud and How Deep Learning Can Mitigate It
Financial Fraud and How Deep Learning Can Mitigate It
Machine learning to detect financial fraud
Logistic regression classifier – under-sampled data
Deep learning time
Summary
11
Case Studies
Case Studies
Introduction to our password dataset
Summary
12
Other Books You May Enjoy
Other Books You May Enjoy
Leave a review - let other readers know what you think

To get the most out of this book

Readers should have basic knowledge of cybersecurity products and machine learning.

Download the example code files

You can download the example code files for this book from your account at www.packt.com. If you purchased this book elsewhere, you can visit www.packt.com/support and register to have the files emailed directly to you.

You can download the code files by following these steps:

  1. Log in or register at www.packt.com.
  2. Select the SUPPORT tab.
  3. Click on Code Downloads & Errata.
  4. Enter the name of the book in the Search box and follow the onscreen instructions.

Once the file is downloaded, please make sure that you unzip or extract the folder using the latest version of:

  • WinRAR/7-Zip for Windows
  • Zipeg/iZip/UnRarX for Mac
  • 7-Zip/PeaZip for Linux

The code bundle for the book is also hosted on GitHub at https://github.com/PacktPublishing/Hands-on-Machine-Learning-for-Cyber-Security. In case there's an update to the code, it will be updated on the existing GitHub repository.

We also have other code bundles from our rich catalog of books and videos available at https://github.com/PacktPublishing/. Check them out!

Download the color images

Conventions used

There are a number of text conventions used throughout this book.

CodeInText: Indicates code words in text, database table names, folder names, filenames, file extensions, pathnames, dummy URLs, user input, and Twitter handles. Here is an example: "The SVM package available in the sklearn package."

A block of code is set as follows:

def url_has_exe(url):
 if url.find('.exe')!=-1:
     return 1
 else :
     return 0

When we wish to draw your attention to a particular part of a code block, the relevant lines or items are set in bold:

dataframe = pd.read_csv('SMSSpamCollectionDataSet', delimiter='\t',header=None)

Any command-line input or output is written as follows:

$ mkdir css
$ cd css

Bold: Indicates a new term, an important word, or words that you see onscreen. For example, words in menus or dialog boxes appear in the text like this. Here is an example: "Select System info from the Administration panel."

Warnings or important notes appear like this.
Tips and tricks appear like this.
Previous Section
Next Section