Book Image

Machine Learning for Cybersecurity Cookbook

By : Emmanuel Tsukerman
Book Image

Machine Learning for Cybersecurity Cookbook

By: Emmanuel Tsukerman

Overview of this book

Organizations today face a major threat in terms of cybersecurity, from malicious URLs to credential reuse, and having robust security systems can make all the difference. With this book, you'll learn how to use Python libraries such as TensorFlow and scikit-learn to implement the latest artificial intelligence (AI) techniques and handle challenges faced by cybersecurity researchers. You'll begin by exploring various machine learning (ML) techniques and tips for setting up a secure lab environment. Next, you'll implement key ML algorithms such as clustering, gradient boosting, random forest, and XGBoost. The book will guide you through constructing classifiers and features for malware, which you'll train and test on real samples. As you progress, you'll build self-learning, reliant systems to handle cybersecurity tasks such as identifying malicious URLs, spam email detection, intrusion detection, network protection, and tracking user and process behavior. Later, you'll apply generative adversarial networks (GANs) and autoencoders to advanced security tasks. Finally, you'll delve into secure and private AI to protect the privacy rights of consumers using your ML models. By the end of this book, you'll have the skills you need to tackle real-world problems faced in the cybersecurity domain using a recipe-based approach.

Related Content you might be interested in

Current Title:

Small book image
Machine Learning for Cybersecurity Cookbook
Emmanuel Tsukerman
Nov, 2019 | 346 pages
Small book image
Mastering Machine Learning for Penetration Testing
Chiheb Chebbi
Jun, 2018 | 276 pages
Small book image
Hands-On Machine Learning for Cybersecurity
Soma Halder | Sinan Ozdemir
Dec, 2018 | 318 pages
Small book image
10 Machine Learning Blueprints You Should Know for Cybersecurity
Rajvardhan Oak
May, 2023 | 330 pages
Table of Contents (11 chapters)
Preface
Preface
Who this book is for
What this book covers
To get the most out of this book
Sections
Get in touch
Free Chapter
1
Machine Learning for Cybersecurity
Machine Learning for Cybersecurity
Technical requirements
Train-test-splitting your data
Standardizing your data
Summarizing large data using principal component analysis
Generating text using Markov chains
Performing clustering using scikit-learn
Training an XGBoost classifier
Analyzing time series using statsmodels
Anomaly detection with Isolation Forest
Natural language processing using a hashing vectorizer and tf-idf with scikit-learn
Hyperparameter tuning with scikit-optimize
2
Machine Learning-Based Malware Detection
Machine Learning-Based Malware Detection
Technical requirements
Malware static analysis
Malware dynamic analysis
Using machine learning to detect the file type
Measuring the similarity between two strings
Measuring the similarity between two files
Extracting N-grams
Selecting the best N-grams
Building a static malware detector
Tackling class imbalance
Handling type I and type II errors
3
Advanced Malware Detection
Advanced Malware Detection
Technical requirements
Detecting obfuscated JavaScript
Featurizing PDF files
Extracting N-grams quickly using the hash-gram algorithm
Building a dynamic malware classifier
MalConv – end-to-end deep learning for malicious PE detection
Tackling packed malware
MalGAN – creating evasive malware
Tracking malware drift
4
Machine Learning for Social Engineering
Machine Learning for Social Engineering
Technical requirements
Twitter spear phishing bot
Voice impersonation
Speech recognition for OSINT
Facial recognition
Deepfake
Deepfake recognition
Lie detection using machine learning
Personality analysis
Social Mapper
Fake review generator
Fake news
5
Penetration Testing Using Machine Learning
Penetration Testing Using Machine Learning
Technical requirements
CAPTCHA breaker
Neural network-assisted fuzzing
DeepExploit
Web server vulnerability scanner using machine learning (GyoiThon)
Deanonymizing Tor using machine learning
IoT device type identification using machine learning
Keystroke dynamics
Malicious URL detector
Deep-pwning
Deep learning-based system for the automatic detection of software vulnerabilities
6
Automatic Intrusion Detection
Automatic Intrusion Detection
Technical requirements
Spam filtering using machine learning
Phishing URL detection
Capturing network traffic
Network behavior anomaly detection
Botnet traffic detection
Insider threat detection
Detecting DDoS
Credit card fraud detection
Counterfeit bank note detection
Ad blocking using machine learning
Wireless indoor localization
7
Securing and Attacking Data with Machine Learning
Securing and Attacking Data with Machine Learning
Technical requirements
Assessing password security using ML
Deep learning for password cracking
Deep steganography
ML-based steganalysis
ML attacks on PUFs
Encryption using deep learning
HIPAA data breaches – data exploration and visualization
8
Secure and Private AI
Secure and Private AI
Technical requirements
Federated learning
Encrypted computation
Private deep learning prediction
Testing the adversarial robustness of neural networks
Differential privacy using TensorFlow Privacy
9
Other Books You May Enjoy
Other Books You May Enjoy
Leave a review - let other readers know what you think
Appendix
Appendix
Setting up a virtual lab environment
Using Python virtual environments

What this book covers

Chapter 1Machine Learning for Cybersecurity, covers the fundamental techniques of machine learning for cybersecurity.

Chapter 2Machine Learning-Based Malware Detection, shows how to perform static and dynamic analysis on samples. You will also learn how to tackle important machine learning challenges that occur in the domain of cybersecurity, such as class imbalance and false positive rate (FPR) constraints.

Chapter 3Advanced Malware Detection, covers more advanced concepts for malware analysis. We will also discuss how to approach obfuscated and packed malware, how to scale up the collection of N-gram features, and how to use deep learning to detect and even create malware.

Chapter 4Machine Learning for Social Engineering, explains how to build a Twitter spear-phishing bot using machine learning. You'll also learn how to use deep learning to have a recording of a target saying whatever you want them to say. The chapter also runs through a lie detection cycle and shows you how to train a Recurrent Neural Network (RNN) so that it is able to generate new reviews, similar to the ones in the training dataset.

Chapter 5Penetration Testing Using Machine Learning, covers a wide selection of machine learning technologies for penetration testing and security countermeasures. It also covers more specialized topics, such as deanonymizing Tor traffic, recognizing unauthorized access via keystroke dynamics, and detecting malicious URLs.

Chapter 6Automatic Intrusion Detection, looks at designing and implementing several intrusion detection systems using machine learning. It also addresses the example-dependent, cost-sensitive, radically-imbalanced, challenging problem of credit card fraud.

Chapter 7Securing and Attacking Data with Machine Learning, covers recipes for employing machine learning to secure and attack data. It also covers an application of ML for hardware security by attacking physically unclonable functions (PUFs) using AI.

Chapter 8Secure and Private AI, explains how to use a federated learning model using the TensorFlow Federated framework. It also includes a walk-through of the basics of encrypted computation and shows how to implement and train a differentially private deep neural network for MNIST using Keras and TensorFlow Privacy.

Appendix offers you a guide to creating infrastructure to handle the challenges of machine learning on cybersecurity data. This chapter also provides a guide to using virtual Python environments, which allow you to seamlessly work on different Python projects while avoiding package conflicts. 

Previous Section
Next Section