Book Image

Mastering Machine Learning for Penetration Testing

By : Chiheb Chebbi
Book Image

Mastering Machine Learning for Penetration Testing

By: Chiheb Chebbi

Overview of this book

Cyber security is crucial for both businesses and individuals. As systems are getting smarter, we now see machine learning interrupting computer security. With the adoption of machine learning in upcoming security products, it’s important for pentesters and security researchers to understand how these systems work, and to breach them for testing purposes. This book begins with the basics of machine learning and the algorithms used to build robust systems. Once you’ve gained a fair understanding of how security products leverage machine learning, you'll dive into the core concepts of breaching such systems. Through practical use cases, you’ll see how to find loopholes and surpass a self-learning security system. As you make your way through the chapters, you’ll focus on topics such as network intrusion detection and AV and IDS evasion. We’ll also cover the best practices when identifying ambiguities, and extensive techniques to breach an intelligent system. By the end of this book, you will be well-versed with identifying loopholes in a self-learning security system and will be able to efficiently breach a machine learning system.

Related Content you might be interested in

Current Title:

Small book image
Mastering Machine Learning for Penetration Testing
Chiheb Chebbi
Jun, 2018 | 276 pages
Small book image
Hands-On Artificial Intelligence for Cybersecurity
Alessandro Parisi
Aug, 2019 | 342 pages
Small book image
Hands-On Machine Learning for Cybersecurity
Soma Halder | Sinan Ozdemir
Dec, 2018 | 318 pages
Small book image
Machine Learning for Cybersecurity Cookbook
Emmanuel Tsukerman
Nov, 2019 | 346 pages
Table of Contents (13 chapters)
Preface
Preface
Who this book is for
What this book covers
To get the most out of this book
Get in touch
Free Chapter
1
Introduction to Machine Learning in Pentesting
Introduction to Machine Learning in Pentesting
Technical requirements
Artificial intelligence and machine learning
Machine learning development environments and Python libraries
Machine learning in penetration testing - promises and challenges
Summary
Questions
Further reading
2
Phishing Domain Detection
Phishing Domain Detection
Technical requirements
Social engineering overview
Steps of social engineering penetration testing
Building real-time phishing attack detectors using different machine learning models
NLP in-depth overview
Summary
Questions
3
Malware Detection with API Calls and PE Headers
Malware Detection with API Calls and PE Headers
Technical requirements
Malware overview
Machine learning malware detection using PE headers
Machine learning malware detection using API calls
Summary
Questions
Further reading
4
Malware Detection with Deep Learning
Malware Detection with Deep Learning
Technical requirements
Artificial neural network overview
Implementing neural networks in Python
Deep learning model using PE headers
Deep learning model with convolutional neural networks and malware visualization
Promises and challenges in applying deep learning to malware detection
Summary
Questions
Further reading
5
Botnet Detection with Machine Learning
Botnet Detection with Machine Learning
Technical requirements
Botnet overview
Building a botnet detector model with multiple machine learning techniques
How to build a Twitter bot detector
Summary
Questions
Further reading
6
Machine Learning in Anomaly Detection Systems
Machine Learning in Anomaly Detection Systems
Technical requirements
An overview of anomaly detection techniques
Network attacks taxonomy
The detection of network anomalies
Building your own IDS
The Kale stack
Summary
Questions
Further reading
7
Detecting Advanced Persistent Threats
Detecting Advanced Persistent Threats
Technical requirements
Threats and risk analysis
Threat-hunting methodology
Threat hunting with the ELK Stack
Summary
Questions
8
Evading Intrusion Detection Systems
Evading Intrusion Detection Systems
Technical requirements
Adversarial machine learning algorithms
Evading intrusion detection systems with adversarial network systems
Summary
Questions
Further reading
9
Bypassing Machine Learning Malware Detectors
Bypassing Machine Learning Malware Detectors
Technical requirements
Adversarial deep learning
Bypassing next generation malware detectors with generative adversarial networks
MalGAN
Bypassing machine learning with reinforcement learning
Summary
Questions
Further reading
10
Best Practices for Machine Learning and Feature Engineering
Best Practices for Machine Learning and Feature Engineering
Technical requirements
Feature engineering in machine learning
Feature selection algorithms
Best practices for machine learning
Summary
Questions
Further reading
11
Assessments
Assessments
Chapter 1 – Introduction to Machine Learning in Pentesting
Chapter 2 – Phishing Domain Detection
Chapter 3 – Malware Detection with API Calls and PE Headers
Chapter 4 – Malware Detection with Deep Learning
Chapter 5 – Botnet Detection with Machine Learning
Chapter 6 – Machine Learning in Anomaly Detection Systems
Chapter 7 – Detecting Advanced Persistent Threats
Chapter 8 – Evading Intrusion Detection Systems with Adversarial Machine Learning
Chapter 9 – Bypass Machine Learning Malware Detectors
Chapter 10 – Best Practices for Machine Learning and Feature Engineering
12
Other Books You May Enjoy
Other Books You May Enjoy
Leave a review - let other readers know what you think

To get the most out of this book

We assume that the readers of this book are familiar with basic information security concepts and Python programming. Some of the demonstrations in this book require more practice and online research to delve into the concepts discussed.

Always check the GitHub repository of this book to check for updated code if you encounter any bugs, typos, or errors.

Download the example code files

You can download the example code files for this book from your account at www.packtpub.com. If you purchased this book elsewhere, you can visit www.packtpub.com/support and register to have the files emailed directly to you.

You can download the code files by following these steps:

  1. Log in or register at www.packtpub.com.
  2. Select the SUPPORT tab.
  3. Click on Code Downloads & Errata.
  4. Enter the name of the book in the Search box and follow the onscreen instructions.

Once the file is downloaded, please make sure that you unzip or extract the folder using the latest version of:

  • WinRAR/7-Zip for Windows
  • Zipeg/iZip/UnRarX for Mac
  • 7-Zip/PeaZip for Linux

The code bundle for the book is also hosted on GitHub at https://github.com/PacktPublishing/Mastering-Machine-Learning-for-Penetration-Testing. In case there's an update to the code, it will be updated on the existing GitHub repository.

We also have other code bundles from our rich catalog of books and videos available at https://github.com/PacktPublishing/. Check them out!

Download the color images

Conventions used

There are a number of text conventions used throughout this book.

CodeInText: Indicates code words in text, database table names, folder names, filenames, file extensions, pathnames, dummy URLs, user input, and Twitter handles. Here is an example: "First, check your Python version with the python --version command."

A block of code is set as follows:

from keras import [what_to_use]
from keras.models import Sequential
from keras.layers import Dense

When we wish to draw your attention to a particular part of a code block, the relevant lines or items are set in bold:

model = Sequential()
# N = number of neurons
# V = number of variable
model.add(Dense(N, input_dim=V, activation='relu'))
# S = number of neurons in the 2nd layer
model.add(Dense(S, activation='relu'))
model.add(Dense(1, activation='sigmoid')) # 1 output

Any command-line input or output is written as follows:

>>> import tensorflow as tf
>>> Message = tf.constant("Hello, world!")
>>> sess = tf.Session()
>>> print(sess.run(Message))

Bold: Indicates a new term, an important word, or words that you see onscreen.

Warnings or important notes appear like this.
Tips and tricks appear like this.
Previous Section
Next Section