SML Lab Security & Machine Learning

• Twitter
• Facebook
• Snapchat

Selected Publications

• Deep Learning from Imperfectly Labeled Malware Data., F. Alotaibi, E. Goodbrand, S. Maffeis. CCS 2025. [Coming soon]
• KnowML: Improving Generalization of ML-NIDS with Attack Knowledge Graphs., X. Guo, A. Merono Penuela, S. Maffeis, F. Pierazzi. arXiv 2025. [arXiv]
• APIRL: Deep Reinforcement Learning for REST API Fuzzing., M. Foley, S. Maffeis. AAAI 2025. [PDF]
• Investigation of Advanced Persistent Threats Network-based Tactics, Techniques and Procedures, A. Alageel, S. Maffeis. arXiv 2025. [arXiv]
• Detecting APT Malware Command and Control over HTTP(S) Using Contextual Summaries, A. Alageel, S. Maffeis. arXiv 2025. [arXiv]
• Helping LLMs Improve Code Generation Using Feedback from Testing and Static Analysis, G. Dolcetti, V. Arceri, E. Iotti, S. Maffeis, A. Cortesi, E. Zaffanella. arXiv 2024. [arXiv]
• HarmLevelBench: Evaluating Harm-Level Compliance and the Impact of Quantization on Model Alignment, Y. Belkhiter, G. Zizzo, S. Maffeis. SafeGenAI@NeurIPS 2024. [arXiv]
• MED: Exploring LLM Memorization on Encrypted Data, P. Christodoulou, G. Zizzo, S. Maffeis. SafeGenAI@NeurIPS 2024. [Coming soon]
• Mateen: Adaptive Ensemble Learning for Network Anomaly Detection, F. Alotaibi, S. Maffeis. RAID 2024. [PDF]
• Differentially Private and Adversarially Robust Machine Learning: An Empirical Evaluation, J. Thakkar, G. Zizzo, S. Maffeis. PPAI@AAAI 2024. [arXiv]
• Elevating Defenses: Bridging Adversarial Training and Watermarking for Model Resilience, J. Thakkar, G. Zizzo, S. Maffeis. DAI@AAAI 2024. [arXiv]
• Rasd: Semantic Shift Detection and Adaptation for Multi-Classification NIDS, F. Alotaibi, S. Maffeis. IFIPSEC 2024. [PDF]
• SQIRL: Grey-Box Detection of SQL Injection Vulnerabilities Using Reinforcement Learning, S. Al Wahaibi, M. Foley, S. Maffeis. USENIX Security 2023. [PDF]
• Adaptive Experimental Design for Intrusion Data Collection, K. Highnam, Z. Hanif, E. Van Vogt, S. Parbhoo, S. Maffeis, N. Jennings. CAMLIS 2023. [PDF]
• EarlyCrow: Detecting APT Malware Command and Control Over HTTP(S) Using Contextual Summaries, A. Alageel, S. Maffeis. ISC 2022. [PDF]
• HAXSS: Hierarchical Reinforcement Learning for XSS Payload Generation, M. Foley, S. Maffeis. IEEE TrustCom 2022. [PDF]
• VulBERTa: Simplified Source Code Pre-Training for Vulnerability Detections, H. Hanif, S. Maffeis. IEEE IJCNN 2022. [PDF]
• A Hybrid Graph Neural Network Approach for Detecting PHP Vulnerabilities, R. Rabheru, H. Hanif, S. Maffeis. IEEE DSC 2022. [PDF]
• Certified Federated Adversarial Training, G. Zizzo, A. Rawat, M. Sinn, S. Maffeis, C. Hankin. NFFL@NeurIPS 2021. [PDF]
• Hawk-Eye: Holistic Detection of APT Command and Control Domains, A. Alageel, S. Maffeis. ACM SAC 2021, (Security Track). [PDF]