Ransomware Detection using Per-Command Labeled NVMe Streams

Introduction

This repository is based on the paper "Learning the Language of NVMe Streams for Ransomware Detection" and provides a Python implementation to reconstruct its results and execute other functionalities.

Installation

To run the code, follow these steps:

Install the required modules by running pip install -r requirements.txt in your terminal.
Ensure you have Python installed on your system.

Running the Code

To start the application, navigate to the project directory and run python main.py. You can choose between two modes:

Demo Mode: Set the demo flag to True to run a simplified version of the code.
Full Execution: Set the demo flag to False and download the CLEAR dataset from Kaggle to the /CLEAR_Dataset folder.

License

CC BY-NC-SA 4.0

Name		Name	Last commit message	Last commit date
Latest commit History 10 Commits
CLEAR_Dataset_Demo		CLEAR_Dataset_Demo
Chunkers		Chunkers
Engines		Engines
Misc		Misc
Models		Models
Preprocessing		Preprocessing
.gitignore		.gitignore
LICENSE		LICENSE
README.md		README.md
main.py		main.py
requirements.txt		requirements.txt

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Repository files navigation

Ransomware Detection using Per-Command Labeled NVMe Streams

Introduction

Installation

Running the Code

License

About

Releases 1

Packages

Languages

License

johndoenvme/rwdetection

Folders and files

Latest commit

History

Repository files navigation

Ransomware Detection using Per-Command Labeled NVMe Streams

Introduction

Installation

Running the Code

License

About

Resources

License

Stars

Watchers

Forks

Releases 1

Packages 0

Languages

Packages