Andy Applebaum

Just released today: CALDERA 4.0.0 alpha! Highlights include a new UI, API with full documentation, new C2 channels, and more! Full changelog at github.com/mitre/caldera/…. Have feedback? We opened a discussion thread on GitHub or shoot us a note over in our Slack.

@shncldwll @CactusCon @CamlisOrg Thank you! I'm glad you enjoyed it! I'll be looking to post the slides + some of the other materials shortly.

@andyplayse4 @CactusCon @CamlisOrg Great talk. Your explanations were wonderful and it also served as a wonderful lit review for what the state of malware classification is now.

In a few hours I'll be speaking at @CactusCon, where I'll be extending my @CamlisOrg talk on building a robust malware classifier by also talking about how I tried to attack the other classifiers in MLSEC 2021; you can check it out live at youtu.be/kKHP76_P8Nw at 10am MST

Join us on Friday, Feb 4 with @andyplayse4 from MITRE presenting: Building and Defending a Machine Learning Malware Classifier: Taking Third at MLSEC 2021 Machines fighting each other? Cool! Check details at cactuscon.com/cc10-schedule and register: cactuscon.com/cc10

@RichardStruse and @JonathanOBaker are currently doing a live demonstration of the freely available R&D Project "Caldera Pathfinder" for the Testing and Evaluation session of the #TIDUSERCON. Join and learn from this demo running live now hubs.ly/Q010w5hW0

Looking for a place to chat about ATT&CK, or maybe ask that burning question on T1480 you have? Invites to our community Slack are open at join.slack.com/t/mitreattack/….

@zangobot Yes definitely! Very cool framework -- was able to use a few of the attacks, but feel like I only scratched the surface. I'm going to be looking more into toucanstrike next!

Aaaand happy to read that SecML malware is used! I'm really happy and excited! 😈

Presentation + paper release are forthcoming, but if you're interested in learning more, I'll be presenting tomorrow morning at CAMLIS. Attendance is limited in person, but you can check out the livestream here: camlis.org/livestream

In the MLSEC competition proper, kipple ultimately placed third -- though was leading the field for much of the competition! (CC @drhyrum, @zh4ck)

Happy to announce the release of "kipple", my entry into the 2021 MLSEC competition and the subject of my @CamlisOrg talk tomorrow! kipple is a set of data, models, and scripts for robust(er) malware detection; you can access it here: github.com/aapplebaum/kip…

CUJO AI partnered with @Microsoft, @NVIDIA, @VMRay, and @MRGEffitas to host the 3rd annual Machine Learning Security Evasion Competition (#MLSEC). Now, We are happy to announce the winners: cujo.com/announcing-the… @CujoaiLabs #ML #Cybersecurity #artificialintelligence

ATT&CKcon 3.0 is coming, March 29/30 2022! We'll be hosting in-person in McLean, VA. The best way to be a part of ATT&CKcon 3.0? Speak! Our CFP is currently open until 11/23 @ 6pm ET and we're excited to see even more of your pithy talks related to ATT&CK openconf.org/ATTACKCON2022/…

Very excited to be presenting my work building "kipple," a (somewhat) robust malware detector, at @CamlisOrg this year. kipple only scored third in the 2021 MLSec Evasion Competition (mlsec.io), but I'm hopeful the talk + future release can help others in the field

@ThreatActress Hi! Sorry to hear you're having issues with CALDERA. Feel free to open an issue on our GitHub and we can see if we can help. We also have a Slack instance too; if you email caldera@mitre.org we can send you an invite.