NUST Institutional Repository
Detection of Malicious SSH Sessions: A Machine Learning Approach
- DSpace Home
- →
- E-Theses
- →
- SEECS
- →
- Information Security
- →
- MS
- →
- View Item
JavaScript is disabled for your browser. Some features of this site may not work without it.
| dc.contributor.author | Khalil, Hamid Mujtaba | |
| dc.date.accessioned | 2022-08-12T10:03:22Z | |
| dc.date.available | 2022-08-12T10:03:22Z | |
| dc.date.issued | 2022 | |
| dc.identifier.uri | http://10.250.8.41:8080/xmlui/handle/123456789/30069 | |
| dc.description.abstract | Cloud computing has enabled organizations to run their workloads on multi node clusters in different private and public cloud service providers (CSPs). Most nodes run some distribution of Linux which is accessed through Secure Shell (SSH). The infrastructure is not only accessed by the engineering team members, but also by automated scripts and bots that help manage those machines. This study formulates a machine learning based technique to classify those SSH sessions into Malicious and Benign by solely using the commands executed in the shell. Thus, this research will help identify any malicious insider in an engineering team or a compromised automation script or bot that was written to help manage that infrastructure. This study also provides a capability to help reduce the damage done by those malign entities by timely notifying the security personnel. | en_US |
| dc.description.sponsorship | Dr. Hasan Tahir | en_US |
| dc.language.iso | en | en_US |
| dc.publisher | SEECS-School of Electrical Engineering and Computer Science NUST Islamabad | en_US |
| dc.title | Detection of Malicious SSH Sessions: A Machine Learning Approach | en_US |
| dc.type | Thesis | en_US |
Files in this item
This item appears in the following Collection(s)
-
MS [146]