Carbon Filter: Real-time Alert Triage Using Large Scale Clustering and Fast Search

no code implementations • 7 May 2024 • Jonathan Oliver, Raghav Batta, Adam Bates, Muhammad Adil Inam, Shelly Mehta, Shugao Xia

"Alert fatigue" is one of the biggest challenges faced by the Security Operations Center (SOC) today, with analysts spending more than half of their time reviewing false alerts.

On the Role of Similarity in Detecting Masquerading Files

no code implementations • 17 Feb 2024 • Jonathan Oliver, Jue Mo, Susmit Yenkar, Raghav Batta, Sekhar Josyoula

We find that these samples potentially create significant problems for machine learning solutions.