Mastering Machine Learning for Penetration Testing

By : Chiheb Chebbi

Mastering Machine Learning for Penetration Testing

By: Chiheb Chebbi

Overview of this book

Cyber security is crucial for both businesses and individuals. As systems are getting smarter, we now see machine learning interrupting computer security. With the adoption of machine learning in upcoming security products, it’s important for pentesters and security researchers to understand how these systems work, and to breach them for testing purposes. This book begins with the basics of machine learning and the algorithms used to build robust systems. Once you’ve gained a fair understanding of how security products leverage machine learning, you'll dive into the core concepts of breaching such systems. Through practical use cases, you’ll see how to find loopholes and surpass a self-learning security system. As you make your way through the chapters, you’ll focus on topics such as network intrusion detection and AV and IDS evasion. We’ll also cover the best practices when identifying ambiguities, and extensive techniques to breach an intelligent system. By the end of this book, you will be well-versed with identifying loopholes in a self-learning security system and will be able to efficiently breach a machine learning system.

Preface

Who this book is for

What this book covers

To get the most out of this book

Get in touch

Free Chapter

Introduction to Machine Learning in Pentesting

Technical requirements

Artificial intelligence and machine learning

Machine learning development environments and Python libraries

Machine learning in penetration testing - promises and challenges

Summary

Questions

Further reading

Phishing Domain Detection

Technical requirements

Social engineering overview

Steps of social engineering penetration testing

Building real-time phishing attack detectors using different machine learning models

NLP in-depth overview

Summary

Questions

Malware Detection with API Calls and PE Headers

Technical requirements

Malware overview

Machine learning malware detection using PE headers

Machine learning malware detection using API calls

Summary

Questions

Further reading

Malware Detection with Deep Learning

Technical requirements

Artificial neural network overview

Implementing neural networks in Python

Deep learning model using PE headers

Deep learning model with convolutional neural networks and malware visualization

Promises and challenges in applying deep learning to malware detection

Summary

Questions

Further reading

Botnet Detection with Machine Learning

Technical requirements

Botnet overview

Building a botnet detector model with multiple machine learning techniques

How to build a Twitter bot detector

Summary

Questions

Further reading

Machine Learning in Anomaly Detection Systems

Technical requirements

An overview of anomaly detection techniques

Network attacks taxonomy

The detection of network anomalies

Building your own IDS

The Kale stack

Summary

Questions

Further reading

Detecting Advanced Persistent Threats

Technical requirements

Threats and risk analysis

Threat-hunting methodology

Threat hunting with the ELK Stack

Summary

Questions

Evading Intrusion Detection Systems

Technical requirements

Adversarial machine learning algorithms

Evading intrusion detection systems with adversarial network systems

Summary

Questions

Further reading

Bypassing Machine Learning Malware Detectors

Technical requirements

Adversarial deep learning

Bypassing next generation malware detectors with generative adversarial networks

MalGAN

Bypassing machine learning with reinforcement learning

Summary

Questions

Further reading

Best Practices for Machine Learning and Feature Engineering

Technical requirements

Feature engineering in machine learning

Feature selection algorithms

Best practices for machine learning

Summary

Questions

Further reading

Assessments

Chapter 1 – Introduction to Machine Learning in Pentesting

Chapter 2 – Phishing Domain Detection

Chapter 3 – Malware Detection with API Calls and PE Headers

Chapter 4 – Malware Detection with Deep Learning

Chapter 5 – Botnet Detection with Machine Learning

Chapter 6 – Machine Learning in Anomaly Detection Systems

Chapter 7 – Detecting Advanced Persistent Threats

Chapter 8 – Evading Intrusion Detection Systems with Adversarial Machine Learning

Chapter 9 – Bypass Machine Learning Malware Detectors

Chapter 10 – Best Practices for Machine Learning and Feature Engineering

Other Books You May Enjoy

Leave a review - let other readers know what you think

Customer Reviews

5 star

4 star

3 star

2 star

1 star

The Kale stack

Monitoring is a difficult mission, especially when it comes to a team of hundreds of engineers, where metrics overload can occur. To solve this problem, in addition to a time series-based anomaly detection ability, there are many projects that we can use. One of them is the Kale stack. It consists of two parts: Skyline and Oculus. The role of Skyline is to detect anomalous metrics (an anomaly detection system), while Oculus is the anomaly correlation component. To download the two components, you can check the following repositories:

Skyline: http://github.com/etsy/skyline
Oculus: http://github.com/etsy/oculus

You will need the following:

At least 8 GB RAM
Quad Core Xeon 5620 CPU, or comparable
1 GB disk space

Mastering Machine Learning for Penetration Testing

By : Chiheb Chebbi

Mastering Machine Learning for Penetration Testing

By: Chiheb Chebbi

Overview of this book

Related Content you might be interested in

Current Title:

Mastering Machine Learning for Penetration Testing

Hands-On Artificial Intelligence for Cybersecurity

Hands-On Machine Learning for Cybersecurity

Machine Learning for Cybersecurity Cookbook