secml_malware
secml_malware copied to clipboard
pralab
Create adversarial attacks against machine learning Windows malware detectors
I follow the tutorials and I have this problem. Here, are my code `import lief` `exe_path = '/Boom'` `exe_object: lief.PE = lief.parse(exe_path)` `print('DOS Header')` `print(exe_object.dos_header)` `print('PE Header')` `print(exe_object.header)` `print('Optional Header')`...
Include wrappers for [QuoVadis](https://github.com/dtrizna/quo.vadis), by leveraging the fusion models provided inside the original repository by @dtrizna. It should be implemented as a `CQuoVadisClassifier` and its wrapper for blackbox attack `CQuoVadisWrapperPhi`....
Hi @zangobot , I am using the malconv to deal with the malware family classification problem. It's a Multi-classification tasks so I modify the malconv's last fc layer's out_features dimension...
In the Sorel-20M repository, in the `train.py`, the `train_network()` function calls `get_generator()` which initializes the `Generator` class, which in turn calls the `Dataset` class that calls the `LMDBReader` class. LMDBReader...
Remove all the debug prints, and use a standard logger that can be customized with a config file or at import time.
As a new feature, it would be interesting to port the perturbations proposed by [Lucas et al.](https://github.com/pwwl/enhanced-binary-diversification) in their [research paper](https://dl.acm.org/doi/10.1145/3433210.3453086). Maybe, SecML Malware could use this repository as a...
**Describe the bug** When applying the `CContentShiftingEvasion` to a binary, if it has been compiled for debug, the manipulation corrupts the file. **To Reproduce** Compile an executable on Windows, using...
In order to better automate the testing part, the library should use some mock classifier to be used to test the algorithms (rather than using real malware / real networks).
GAMMA section injection has `listdir` to load all samples from a folder. But this could load samples out of order, reducing reproducibility.
`model.predict()` retrieves class '1' even if the prediction score is under the ember model threshold
