Class Central is learner-supported. When you buy through links on our site, we may earn an affiliate commission.

YouTube

How NLP Can Help Us Understand Web Attackers - Applying Word2Vec to Web Application Security

OWASP Foundation via YouTube

Overview

Explore how Natural Language Processing (NLP) techniques can be applied to web application security in this conference talk from OWASP Global AppSec Tel Aviv. Dive into the application of Word2Vec to analyze malicious web requests, embedding attack vectors in Euclidean space for contextual analysis. Learn about practical applications, including modeling web scanning tools, assessing security rule effectiveness, and distinguishing targeted attacks from general web scans. Gain insights from cybersecurity experts Itsik Mantin and Ori Or Meir as they present their research on using NLP to better understand and defend against web attackers. Discover how this innovative approach can help identify related attack vectors, improve security rule accuracy, and isolate attacks from the same campaign.

Syllabus

Introduction
About the team
What is AI used for
Security Modeling and Attack Analytics
Malicious Request
Rules Selection
Wool Set
Eight Rules
Demo
Embedding of Rules
Finding False Negatives
Research Mode
Example
How we did it
Concrete example
More examples
Summary

Taught by

OWASP Foundation

Reviews

Start your review of How NLP Can Help Us Understand Web Attackers - Applying Word2Vec to Web Application Security

Never Stop Learning.

Get personalized course recommendations, track subjects and courses with reminders, and more.

Someone learning on their laptop while sitting on the floor.