1. X
  2. Bobby Filar
Log inSign up
Bobby Filar
6,403 posts
Image
user avatar
Bobby Filar
@filar
dad. security ai @sublime_sec fmr:@elastic, @endgameinc
MPLS
bfilar.github.io
Joined July 2008
1,027
Following
2,036
Followers
RepliesRepliesMediaMedia

New to X?

Sign up now to get your own personalized timeline!

Create account

By signing up, you agree to the Terms of Service and Privacy Policy, including Cookie Use.

Terms·Privacy·Cookies·Accessibility·Ads Info·© 2026 X Corp.
Don't miss what's happening
People on X are the first to know.
Log inSign up
  • Pinned
    user avatar
    Bobby Filar
    @filar
    Feb 24, 2020
    New @elastic blog post "Discovering anomalous patterns based on parent-child process relationships" covers a lot of material from my ProblemChild @CamlisOrg talk.
    elastic.co
    Detecting attackers using anomalous patterns in machine learning
    Attackers using “living off the land” techniques can be difficult to identify. Detecting post-compromise anomalous patterns based on parent-child process relationships helps detect adversaries that...
  • user avatar
    Bobby Filar
    @filar
    Mar 20, 2018
    Two Deep Learning NLP books coming this year: Deep Learning with Text by @honnibal & @skipgram shop.oreilly.com/product/063692… Natural Language Processing with PyTorch @deliprao & @GokuMohandas shop.oreilly.com/product/063692…
    Image
    oreilly.com
    O'Reilly Media - Technology and Business Training
    Build the skills your teams need. Give them the O'Reilly learning platform and equip them with the resources that drive business outcomes.
  • user avatar
    Bobby Filar
    @filar
    Jun 30, 2020
    Excited to see @elastic open up its detection rules repo. Blog post by @rw_access does a great job detailing how to get rules into your detection engine and how best to contribute to the community.
    Image
    Elastic Security opens public detection rules repo
    From elastic.co
  • user avatar
    Bobby Filar
    @filar
    Aug 28, 2020
    Finally releasing MalwareRL, an OpenAI gym for Ember and MalConv malware classifiers. This builds on the RL research @drhyrum @mrphilroth and I did on malware evasions. There are new binary modifications and a baseline (random) agent to get you started.
    Image
    GitHub - bfilar/malware_rl: Malware Bypass Research using Reinforcement Learning
    From github.com
  • user avatar
    Bobby Filar
    @filar
    Feb 13, 2018
    Me avoiding feature tickets in JIRA during that final sprint before testing...
    Image
    GIF
  • user avatar
    Bobby Filar
    @filar
    Apr 17, 2020
    Replying to @newbury_eric @passantino and @neontaster
    You're right these can definitely can be used as an alternative, but they are still not ventilators. Saying that you sent ventilators when you actually sent CPAP machines is why articles like this get written.
  • user avatar
    Bobby Filar
    @filar
    Oct 2, 2019
    About to give my talk at #VB2019 on using ML and graph theory to identify malicious process chains in event data. Slides here: docs.google.com/presentation/d…
  • user avatar
    Bobby Filar
    @filar
    Jan 13, 2022
    I am beyond excited about the SecML team's work here @elastic. This post shows how our team uses transforms to identify beaconing malware. We hope this post encourages security researchers to prototype new statistical models to detect bad in their data! elastic.co/blog/identifyi…
  • user avatar
    Bobby Filar
    @filar
    Aug 19, 2018
    Replying to @SwiftOnSecurity and @HuntOperator
    - Where do they get training data? - How do they generate labels? - What are the performance metric? - How often are models retrained? (Do they degrade over time?) - How well does it generalize to previously unobserved samples/events?
  • user avatar
    Bobby Filar
    @filar
    Dec 21, 2018
    "Machine Learning in Cyber-Security - Problems, Challenges and Data Sets" by researchers @shodanhq and @PaloAltoNtwks Really nice set of topics/datasets
    arXiv logo
    arxiv.org
    Machine Learning in Cyber-Security - Problems, Challenges and Data Sets
    We present cyber-security problems of high importance. We show that in order to solve these cyber-security problems, one must cope with certain machine learning challenges. We provide novel data...
  • user avatar
    Bobby Filar
    @filar
    Oct 25, 2019
    Updated slides from my @CamlisOrg talk on using ML/Graph analysis to discover malicious parent-child process communities aka ProblemChild. docs.google.com/presentation/d…
  • user avatar
    Bobby Filar
    @filar
    Apr 16, 2018
    Ember: An Open Source Classifier And Dataset by @EndgameInc. Huge step forward for reproducibility in malware classification research. Thanks @mrphilroth and @drhyrum for your hard work! Github: github.com/endgameinc/emb… Blog: endgame.com/blog/technical…
    Image
    GitHub - elastic/ember: Elastic Malware Benchmark for Empowering Researchers
    From github.com
  • user avatar
    Bobby Filar
    @filar
    Dec 26, 2017
    Two ML/infosec papers on identifying malicious strings: Predicting Domain Generation Algorithms with LSTMs by @jswoodbridge et al. arxiv.org/pdf/1611.00791… eXpose: A Char-Level CNNs For Detecting Malicious URLs, Paths and Reg Keys by @joshua_saxe et al. arxiv.org/pdf/1702.08568…
  • user avatar
    Bobby Filar
    @filar
    Jan 15, 2020
    Just came across @struppigel's "Malware Analysis For Hedgehogs" channel. His breakdown of the Basic Structure of PE Files is super helpful for Data Scientists who may be working on malware classification. Very simple, intuitive explanations.
Advertisement
Advertisement