I am a second year Master's student, currently working in Software Engineering and Network Systems Laboratory (SENS) with Dr. Alex X. Liu.

My research interests include:

Cloud Computing & Virtual Machine Security
Information Security
Data Mining & Machine Learning
Malware { bots, viruses, worms, trojans, backdoors (germs, bacteria, fungi. LOL) }
Cryptography/Cryptanalysis
Cracking Softwares
Hacking

Publications:

M. Zubair Shafiq, Syeda Momina Tabish, Fauzan Mirza and Muddassar Farooq. PE-Miner: Realtime Mining of Structural Information to Detect Zero-Day Malicious Portable Executables, 12th International Symposium On Recent Advances In Intrusion Detection (RAID), Lecture Notes in Computer Science, Springer, France, September, 2009. [pdf]

Salman Manzoor, M. Zubair Shafiq, S. Momina Tabish and Muddassar Farooq. A Sense of Danger for Windows processes, International Conference on Research in Artificial Immune Systems (ICARIS), Lecture Notes in Computer Science, Springer, York, UK, August, 2009. [pdf]

M. Zubair Shafiq and Syeda Momina Tabish. PE-Probe: leveraging morphological information of portable executables to detect zero-day malware, Virus Bulletin Conference (VB), Geneva, Switzerland, September, 2009. [Web Link].

Syeda Momina Tabish, M. Zubair Shafiq, and Muddassar Farooq. Malware Detection using Statistical Analysis of Byte-Level File Content, ACM SIGKDD Conference on Knowledge Discovery and Data Mining (KDD), Workshop on CyberSecurity and Intelligence Informatics (CSI),ACM Press, Paris, France, July, 2009. [pdf]

M. Zubair Shafiq, Syeda Momina Tabish, and Muddassar Farooq. On the Appropriateness of Evolutionary Rule Learning Algorithms for Malware Detection, International Workshop on Learning Classifier Systems (IWLCS), held in conjunction with Genetic and Evolutionary Computation Conference (GECCO), ACM Press, Montreal, Canada, July, 2009. [pdf]

M. Zubair Shafiq, Syeda Momina Tabish, and Muddassar Farooq. Are evolutionary rule learning algorithms appropriate for malware detection?, (extended abstract), Genetic and Evolutionary Computation Conference (GECCO), ACM Press, Montreal, Canada, July, 2009. [pdf]

M. Zubair Shafiq, Syeda Momina Tabish, Syed Ali Khayam and Muddassar Farooq. Embedded Malware Detection using Markovian Statistical Model of Benign Files, TR-nexGINRC-2008-14, September, 2008. [pdf]

Projects:

Few of the projects I have done so far are:

PE-Miner: Detection of malicious portable executables:

In this work, distinguishing features are extracted automatically from headers of portable executables (PE) files and are used to classify unseen malicious PE files using data mining algorithms. PE-Miner achieves more than 99% detection rate with less than 0.5% false alarm rate for distinguishing between the benign and malicious executables.

Perfometer:

It is a tool for performance analysis of various system wide features. It leverages the system calls, number of CPU cycles, amount of disk space used, real and virtual memory consumption to give an over all picture of the effect of a particular software on the system's resources.

Statistical Model and Analysis of Backscatter Network Traffic:

In this project, I have presented the statistical model of CAIDA backscatter network traffic. I further presented the statistical model of a rate-limiting detector. Although the detailed experimental results could not be presented, but I were able to empirically test the validity of the model by observing the distribution of packet arrivals.

Statisical Toolkit for Multivariate Data Visualization:

This project is a toolkit of Statistics for Multivariate data. It takes the values of multiple variables and then can performs different statistical techniques on it as required by the user. The result produced is furthur used by Statisticians to make Inferences. The visualization of multi-variate data makes the analysis simple.

Web Database using Java Servlets:

In this project I have made a database of Quranic verses (Arabic text with english translation) and ahadith. The database is accessed using Java servlets through a very simple to use interface.