Product Details

GenRex: Generator of Regular Expressions

Created: 2024

Czech title
GenRex: Generátor regulárních výrazů
Type
software
License
In order to use the result by another entity, it is always necessary to acquire a license
License Fee
The licensor does not require a license fee for the result
Authors
Regéciová Dominika, Ing. (DIFS)
Kolář Dušan, doc. Dr. Ing. (DIFS)
Milkovič Marek, Ing.
Keywords

Malware detection, dynamic analysis, pattern generation algorithm, regular
expressions, rules generation algorithm, YARA, GenRex

Description

GenRex is a unique tool for detecting similarities in artifacts (extracted data)
from executable files and for generating regular expressions from them. It
implements an advanced algorithm to create regular expressions, improves
state-of-the-art algorithms, and includes domain-specific optimizations and
pattern detections for optimal results.

Generated regular expressions can be used for malware detections, for example,
with YARA or any other pattern-matching tool. We also tested GenRex on publicly
available behavioral reports and achieved a  high True Positive Rate of 92.34%
and a low False Positive Rate of 0.01%.

Location

https://github.com/avast/genrex

Projects
Methods for extracting and detecting patterns in the program code, Avast, start: 2017-09-01, end: 2021-08-31, running
Research groups
Formal Model Research Group (RG FM)
Departments
Department of Information Systems (DIFS)
Back to top