Tuesday, September 2, 2014

Mike Sconzo at OWASP Austin talking about Machine Learning


The video recording of Mike's talk is here https://vimeo.com/104466721

Mike Sconzo, (@sooshie) presented at the OWASP Austin chapter meeting on 8/26.  He showed how machine learning can be used to detect drive-by and SQL Injection attacks. Machine learning is interesting - it's tricky to do numeric-only analysis when log files contain words.

Mike showed a data frame he uses for logs, letting him parse them. He showed several cool technologies he uses in his process:

Here's his basic process:



Although the talk was not commercial, Mike works for Click Security http://clicksecurity.com
Here's a link to some of his goodies http://clicksecurity.github.io/data_hacking/
And, finally, here's an alternative picture of Mike in his natural habitat: