Research
Automated Detection of Malicious Websites
Damage from fake e-commerce and phishing sites is rising. We research automated detection of malicious websites, including SAGICHECK for fake shopping sites, multi-class classification with fastText and LightGBM, and self-improving crawling systems.
Malware and C2 Server Analysis
Rapid malware evolution and IoT proliferation demand new responses. We research malware and C2 server analysis, including pseudo-C2 server generation for IoT malware, encrypted TLS communication identification, and binary code similarity detection with neural machine translation.
Cybersecurity Operation / Education
Cybersecurity professional shortages and operational complexity demand effective support. We research practical operations support and education, including attack-defence tree generation (COTTAGE), Vulnerability Management Chaining (VMC), threat analysis tools (FRAT&RATTATA), and gamification-based education.
Threat Intelligence and Actor Analysis
As cyber attacks become more organised, identifying attacker groups is critical. We research threat intelligence and actor analysis, including dark web intelligence extraction, authorship attribution of Japanese web posts, and social bot investigation.