St. Pölten, Austria
+43 2742 313228 648

Publications

2018

Robert Luh, Gregor Schramm, Markus Wagner, Helge Janicke, and Sebastian Schrittwieser. SEQUIN: A Grammar Inference Framework for Analyzing Malicious System Behavior. Journal of Computer Virology and Hacking Techniques. 2018

David Rieger and Simon Tjoa. A Readiness Model for Measuring the Maturity of Cyber Security Incident Management. In 10th International Conference on Intelligent Networking and Collaborative Systems (INCoS-2018), Springer, 2018

Robert Luh, Marlies Temper, Simon Tjoa, and Sebastian Schrittwieser. APT RPG: Design of a Gamified Attacker/Defender Meta Model. ForSE 2018

Martin Pirker, Patrick Kochberger, Stefan Schwandter. Behavioural Comparsion of Systems for Anomaly
Detection. Proceedings of the 13th International Conference on Availability, Reliability and Security (ARES). 2018

Julian Rauchberger, Sebastian Schrittwieser, Tobias Dam, Robert Luh, Damjan Buhov, Gerhard Pötzelsberger, Hyoungshick Kim. The Other Side of the Coin: A Framework for Detecting and Analyzing Web-based Cryptocurrency Mining Campaigns. Proceedings of the 13th International Conference on Availability, Reliability and Security (ARES). 2018

Patrick Kochberger and Florian Seitl. Detecting Cryptography through IR Visualization. In Proceedings of the 4th International Conference on Software Security and Assurance (ICSSA18). 2018 (Best Presentation Award)

2017

Robert Luh, Sebastian Schrittwieser, Stefan Marschalek. LLR-based sentiment analysis for kernel event sequences. AINA 2017

Julian Rauchberger, Robert Luh, Sebastian Schrittwieser. Longkit – A Universal Framework for BIOS/UEFI Rootkits in System Management Mode. ICISSP 2017

Aigner, Wolfgang, Daniel A. Keim, Sebastian Schrittwieser, Robert Luh, Fabian Fischer, Alexander Rind, Dominik Sacha, and Markus Wagner. “Visual analytics: Foundations and experiences in malware analysis.” In Empirical Research for Software Security, pp. 159-192. CRC Press, 2017.

Thür, Niklas, Markus Wagner, Johannes Schick, Christina Niederer, Jürgen Eckel, Robert Luh, and Wolfgang Aigner. “A Bigram Supported Generic Knowledge-Assisted Malware Analysis System: BiG2-KAMAS.” Proceedings of the 10th Forum Media Technology 2017

Thür, Niklas, Markus Wagner, Johannes Schick, Christina Niederer, Jürgen Eckel, Robert Luh, and Wolfgang Aigner. “BiG2-KAMAS: Supporting knowledge-assisted malware analysis with bi-gram based valuation.” In Poster of the 14th Workshop on Visualization for Cyber Security (VizSec), Phoenix, Arizona, USA. 2017.

Sebastian Eresheim, Robert Luh, Sebastian Schrittwieser. The Evolution of Process Hiding Techniques in Malware – Current Threats and Possible Countermeasures. Journal of Information Processing – Special issue of “Computer Security Technologies against Sophisticated Cyber Attacks”. 2017

Robert Luh, Gregor Schramm, Markus Wagner, Sebastian Schrittwieser. Sequitur-based Inference and Analysis Framework for Malicious System Behavior. ForSE 2017

Peter Kieseberg, Sebastian Neuner, Sebastian Schrittwieser, Martin Schmiedecker and Edgar Weippl. Real-time Forensics through Endpoint Visibility. 9th EAI International Conference on Digital Forensics & Cyber Crime. 2017

Robert Luh, Sebastian Schrittwieser, Helge Janicke, Stefan Marschalek. Design of an Anomaly-based Threat Detection & Explication System. ICISSP 2017

Markus Wagner, Dominik Sascha, Alexander Rind, Fabian Fischer, Robert Luh, Sebastian Schrittwieser, Daniel A. Keim, Wolfgang Aigner. Empirical Research for Software Security: Foundations and Experience. Book chapter. 2017

Peter Kieseberg, Edgar Weippl, Sebastian Schrittwieser. Forensics using Internal Database Structures. ERCIM News No. 108

Kim, Jinwoo, Kuyju Kim, Junsung Cho, Hyoungshick Kim, and Sebastian Schrittwieser. Hello, Facebook! Here is the stalkers’ paradise!: Design and analysis of enumeration attack using phone numbers on Facebook. In International Conference on Information Security Practice and Experience, pp. 663-677. Springer, Cham, 2017.

S. Marschalek, R. Luh and S. Schrittwieser, “Endpoint Data Classification Using Markov Chains,” 2017 International Conference on Software Security and Assurance (ICSSA), Altoona, PA, 2017, pp. 56-59.

D. Buhov, P. Kochberger, R. Thron and S. Schrittwieser, “Discovering Cryptographic Algorithms in Binary Code Through Loop Enumeration,” 2017 International Conference on Software Security and Assurance (ICSSA), Altoona, PA, 2017, pp. 80-86.

J. Ryoo, S. Kim, J. Cho, H. Kim, S. Tjoa and C. Derobertis, “IoE Security Threats and You,” 2017 International Conference on Software Security and Assurance (ICSSA), Altoona, PA, 2017, pp. 13-19.

S. Eresheim, R. Luh and S. Schrittwieser, “On the Impact of Kernel Code Vulnerabilities in IoT Devices,” 2017 International Conference on Software Security and Assurance (ICSSA), Altoona, PA, 2017, pp. 1-5.

M. Valicek, G. Schramm, M. Pirker and S. Schrittwieser, “Creation and Integration of Remote High Interaction Honeypots,” 2017 International Conference on Software Security and Assurance (ICSSA), Altoona, PA, 2017, pp. 50-55.

2016

Sebastian Schrittwieser, Stefan Katzenbeisser, Johannes Kinder, Georg Merzdovnik, Edgar Weippl. Protecting software through obfuscation: Can it keep pace with progress in code analysis? ACM Computing Surveys (CSUR), Volume 49 Issue 1, 2016.

Robert Luh, Stefan Marschalek, Manfred Kaiser, Helge Janicke, Sebastian Schrittwieser. Semantics-aware detection of targeted attacks – A survey.  Journal of Computer Virology and Hacking Techniques, Springer. 2016.

Robert Luh, Sebastian Schrittwieser and Stefan Marschalek. TAON: An ontology-based approach to mitigating targeted attacks In Proceedings of the 18th International Conference on Information Integration and Web-based Applications & Services, 2016.

Bernd Malle, Peter Kieseberg, Sebastian Schrittwieser, and Andreas Holzinger. Privacy Aware Machine Learning and the “Right to be forgotten” ERCIM News No. 107

Peter Kieseberg, Edgar Weippl, Sebastian Schrittwieser. Detection of Data Leaks in Collaborative Data Driven Research. ERCIM News No. 105

Peter Kieseberg, Sebastian Schrittwieser, Edgar Weippl, Andreas Holzinger. Testing Algorithms in Sensitive Data Driven Research. 14. Anwenderkonferenz (ASQT 2016) Softwarequalität, Test und Innovation.

Martin Pirker and Andreas Nusser. Assessment of Server State via Inter-Clone Differences. ICSSA 2016. IEEE

Damjan Buhov. Catch Me If You Can! Transparent Detection Of Shellcode. ICSSA 2016. IEEE

Martin Pirker, Andreas Nusser. A Work-Flow for Empirical Exploration of Security Events. First Workshop on Empirical Research Methods in Information Security 2016 (held in conjunction with WWW).

Stefan Marschalek, Manfred Kaiser, Robert Luh, Sebastian Schrittwieser. Empirical Malware Research through Observation of System Behaviour. First Workshop on Empirical Research Methods in Information Security 2016 (held in conjunction with WWW).

2015

Tariq Fadai, Sebastian Schrittwieser, Peter Kieseberg, Martin Mulazzani. Trust me, I’m a Root CA! Analyzing SSL Root CAs in modern Browsers and Operating Systems. In Proceedings of the International Conference on Availability, Reliability and Security, 2015.

Stefan Marschalek, Robert Luh, Manfred Kaiser, Sebastian Schrittwieser. Classifying malicious system behavior using event propagation trees. In Proceedings of the 17th International Conference on Information Integration and Web-based Applications & Services, 2015.

Christoph Rottermanner, Peter Kieseberg, Markus Huber, Martin Schmiedecker, Sebastian Schrittwieser. Privacy and Data Protection in Smartphone Messengers. In Proceedings of the 17th International Conference on Information Integration and Web-based Applications & Services, 2015.

Theses

Matthias Sterle, Robert Luh (Supervisor). Hostübergreifende Korrelation von Systemereignissen mittels Netzwerk-Flow Daten. Master’s Thesis.

Alexander Kolmann, Sebastian Schrittwieser (Supervisor). Advanced attribution of an attacker’s network infrastructure using passive DNS data. Master’s Thesis.

Aron Molnar, Sebastian Schrittwieser (Supervisor). Exploratory PDF file analysis and malware recognition. Master’s Thesis.

Martin Liebl, Sebastian Schrittwieser (Supervisor). Correlating System Events to Support the Network Analysis Process. Master’s Thesis.

Mario Rubak, Sebastian Schrittwieser (2nd Supervisor). Evaluation of Static Code Analysis Tools. Master’s Thesis.

Benjamin Petermaier, Sebastian Schrittwieser (Supervisor). SyncSource: How in-sync is your source code? An analysis tool for finding similarities in open source software. Bachelor’s Thesis.

Matteo Tomaselli, Sebastian Schrittwieser (Supervisor). System Integrity Protection’s Impact on OS X Security Under OS X El Capitan based on previous attacks. Bachelor’s Thesis.

Julian Rauchberger, Robert Luh (Supervisor). Longkit A Universal Framework for BIOS/UEFI Rootkits in System Management Mode. Bachelor’s Thesis.

Johannes Frech, Robert Luh (Supervisor). Windows 10 Computerforensik. Bachelor’s Thesis.

Sebastian Eresheim, Robert Luh (Supervisor). Windows Process Hiding. Bachelor’s Thesis.

Kevin Schneider, Robert Luh (Supervisor). GPU Malware. Bachelor’s Thesis.

Stefan Biehl, Sebastian Schrittwieser (Supervisor). Analyse und Modellierung von Insider-Bedrohungen Mögliche Auswirkungen von Insider-Angriffen. Bachelor’s Thesis.