This Tool Demo covers following tools where the speaker has contributed or authored
CALMAL
CALMAL
Abstract
CalMal uses unsupervised machine learning for categorising and clustering of malware based upon the behaviour of the malware. Currently CalMal uses data from VirusTotal . It provides following functionalities :
- Cluster different malware family.
- Identifying similarities with any APT malware
- Identify new samples.
- Providing visual clustering It can easily be extended to use data from any sandbox.