This repository contains Dockerfiles and Docker Compose configuration for creating and running containers to simulate various attack scenarios on remote classifiers. Follow the instructions below to build and run these containers.
Make sure you have Docker installed on your system. If not, you can download and install Docker from Docker's official website.
-
To build the Docker images for the containers locally, navigate to the root directory of this repository and run the following commands:
docker build -t image-server server docker build -t image-client-evasion client_evasion docker build -t image-client-poisoning client_poisoning
-
Alternatively, you can pull them directly from Docker Hub using the following commands:
docker pull lucapa17/ai-cyber-range:server && docker tag lucapa17/ai-cyber-range:server image-server && docker rmi lucapa17/ai-cyber-range:server docker pull lucapa17/ai-cyber-range:client-evasion && docker tag lucapa17/ai-cyber-range:client-evasion image-client-evasion && docker rmi lucapa17/ai-cyber-range:client-evasion docker pull lucapa17/ai-cyber-range:client-poisoning && docker tag lucapa17/ai-cyber-range:client-poisoning image-client-poisoning && docker rmi lucapa17/ai-cyber-range:client-poisoning
After building the images or pulling them from Docker Hub, you can run the containers using Docker Compose files to simulate different attack scenarios on remote classifiers. Remember to place the goodware and malware samples in the data/goodware_samples and data/malware_samples folders, respectively.
-
Evasion attacks within the following scenarios are based on the black-box attack framework named GAMMA (Genetic Adversarial Machine Learning Malware Attack), as described in the article Functionality-preserving Black-box Optimization of Adversarial Windows Malware, specifically using the section injection manipulation.
If you wish to modify the attacks and use different strategies and parameters, you can modify the contents of the
scenarios/evasion_attacks/queryfolder.-
docker compose -f scenarios/evasion_attacks/docker-compose-malconv-evasion.yml up
-
docker compose -f scenarios/evasion_attacks/docker-compose-emberGBDT-evasion.yml up
-
For Scenario 3, make sure to modify the queries in the
docker compose -f scenarios/evasion_attacks/docker-compose-virustotal-evasion.yml up
scenarios/evasion_attacks/query/evasion-virustotalfolder, specifying your own API key for VirusTotal. -
For Scenario 4, make sure to modify the queries in the
docker compose -f scenarios/evasion_attacks/docker-compose-metadefender-evasion.yml up
scenarios/evasion_attacks/query/evasion-metadefenderfolder, specifying your own API key for MetaDefender.
-
-
The following scenarios represent poisoning attacks initiated by a client against the server. In these scenarios, the client modifies either goodware or malware samples before sending them to the server . The server sends the newly collected samples to an external antivirus service for proper labeling and then fine-tunes its anti-malware detection model. Subsequently, the client sends new samples without any modifications. The client's objective is to increase the number of false positives or false negatives after the poisoning. To adjust the parameters for the scenarios, please modify the environment variables in the Docker Compose files.
-
Scenario 1: Poisoning Attack against against EMBER GBDT hosted on a Server to increase false negative rates
In Scenario 1, the antivirus labeling service is provided by another server hosting a Malconv Classifier.docker compose -f scenarios/poisoning_attacks/docker-compose-emberGBDT-poisoning-false-negatives.yml up
-
Scenario 2: Poisoning Attack against against EMBER GBDT hosted on a Server to increase false positive rates
In Scenario 2, the antivirus labeling service used is Metadefender. Ensure to update the Docker Compose Files with your Metadefender API key(s).docker compose -f scenarios/poisoning_attacks/docker-compose-emberGBDT-poisoning-false-positives.yml up
-