Fuzzy Hashing and Locality-Sensitive Hashing for File Analysis

bro fuzzy hashing n.w
1 / 4
Embed
Share

Learn about bro-fuzzy-hashing and its applications in file analysis, including fuzzy hashing and locality-sensitive hashing. Explore examples, use cases, and open questions related to these advanced hashing techniques.

  • Fuzzy Hashing
  • Locality-Sensitive Hashing
  • File Analysis
  • Bro Package
  • Hashing Techniques
rayaanacharya
sha_m Follow

Uploaded on | 0 Views

Download Presentation

Please find below an Image/Link to download the presentation.

The content on the website is provided AS IS for your information and personal use only. It may not be sold, licensed, or shared on other websites without obtaining consent from the author. If you encounter any issues during the download, it is possible that the publisher has removed the file from their server.

You are allowed to download the files provided on this website for personal or commercial use, subject to the condition that they are used lawfully. All files are the property of their respective owners.

Download Presentation

The content on the website is provided AS IS for your information and personal use only. It may not be sold, licensed, or shared on other websites without obtaining consent from the author.

E N D

Presentation Transcript

  1. bro-fuzzy-hashing Jan Grash fer (KIT)

  2. Fuzzy Hashing aka Locality-Sensitive Hashing E74bccc6a838c4faf8454a3f4bdea76b2507d45c SHA1 Hash: 53686f67b0f242745ea56708f2623919f9ebda19 6144:8cM3jdzP9GwzZZfeTxKbb7UD31YrO2o9mK9uVKCM+kZIP:8cIjew1lcdYy2oUGCM+MS Fuzzy Hash: 6144:8cM3jdzP9GwzZZfeTxKbbOUD31YrO2o9mK9uVKCM+kZIP:8cIjew1lcQYy2oUGCM+MS

  3. bro-fuzzy-hashing Example event file_sniff(f: fa_file, meta: fa_metadata) { Files::add_analyzer(f, Files::ANALYZER_SHA1); Files::add_analyzer(f, Files::ANALYZER_TLSH); } Requirements: TLSH library ssdeep library (libfuzzy) event file_hash(f: fa_file, kind: string, hash: string) { print fmt("file_hash: %s", hash); } Provides same functionality as Bro s built-in hashing: File Analyzer Opaque type event file_fuzzy_hash(f: fa_file, kind: string, hash: string) { print fmt("file_fuzzy_hash: %s", hash); } github.com/J-Gras/bro-fuzzy-hashing available as Bro package jan.grashoefer@kit.edu

  4. bro-fuzzy-hashing Example event file_sniff(f: fa_file, meta: fa_metadata) { Files::add_analyzer(f, Files::ANALYZER_SHA1); Files::add_analyzer(f, Files::ANALYZER_TLSH); } Use cases: Approximate file matching Incomplete files \_( )_/ event file_hash(f: fa_file, kind: string, hash: string) { print fmt("file_hash: %s", hash); } Open questions: Practicability Performance event file_fuzzy_hash(f: fa_file, kind: string, hash: string) { print fmt("file_fuzzy_hash: %s", hash); } github.com/J-Gras/bro-fuzzy-hashing jan.grashoefer@kit.edu

Related


Introduction of Fuzzy System and Application

Introduction of Fuzzy System and Application

tianna
Fuzzy Logic Basics

Fuzzy Logic Basics

iyla
Secure Keyed Hashing on Programmable Switches

Secure Keyed Hashing on Programmable Switches

honey
CSE 373 - Hashing Concepts and Exam Preparation

CSE 373 - Hashing Concepts and Exam Preparation

juso476
Scaling Services and Key-Value Storage Techniques

Scaling Services and Key-Value Storage Techniques

adan601
International Conference on Fuzzy Systems and Data Mining 2024

International Conference on Fuzzy Systems and Data Mining 2024

asl_ou
Consistent Hashing and Distributed Hash Table

Consistent Hashing and Distributed Hash Table

emam754
Fuzzy Soft Set Approach to Decision Making Problems

Fuzzy Soft Set Approach to Decision Making Problems

ayakach
Overlay Networks and Consistent Hashing in Distributed Systems

Overlay Networks and Consistent Hashing in Distributed Systems

jmoss
Adapting Linear Hashing for Flash Memory Constrained Embedded Devices

Adapting Linear Hashing for Flash Memory Constrained Embedded Devices

quaranta_k
Enhancing Key-Value Storage with MemC3 and Cuckoo Hashing

Enhancing Key-Value Storage with MemC3 and Cuckoo Hashing

kish_2
Database Index Hashing Techniques

Database Index Hashing Techniques

ker_moz
Data Structures and Hashing in Java

Data Structures and Hashing in Java

adle339
Fuzzy Logic: Basics and Applications

Fuzzy Logic: Basics and Applications

durrance_c
Hash Tables and Hashing Concepts in Computer Algorithms

Hash Tables and Hashing Concepts in Computer Algorithms

jay_par
Applications of Fuzzy Logic in Soft Computing

Applications of Fuzzy Logic in Soft Computing

mona_9
Network Security Principles and Techniques

Network Security Principles and Techniques

rit_lip
Efficient Bucket Management in Extendible Hashing

Efficient Bucket Management in Extendible Hashing

tinleighd
Cryptographic Hashing and its Importance

Cryptographic Hashing and its Importance

vick621
Hashing Data Structures

Hashing Data Structures

mcpeters_j
Community ID Standardized Flow Hashing for NSM Tools

Community ID Standardized Flow Hashing for NSM Tools

aree
Hash-Based Indexes

Hash-Based Indexes

jho_go

More Related Content