{"id":40541,"date":"2017-10-21T04:00:50","date_gmt":"2017-10-21T08:00:50","guid":{"rendered":"http:\/\/quotulatiousness.ca\/blog\/?p=40541"},"modified":"2017-10-20T14:23:59","modified_gmt":"2017-10-20T18:23:59","slug":"canadas-equivalent-to-the-nsa-releases-a-malware-detection-tool","status":"publish","type":"post","link":"https:\/\/quotulatiousness.ca\/blog\/2017\/10\/21\/canadas-equivalent-to-the-nsa-releases-a-malware-detection-tool\/","title":{"rendered":"Canada&#8217;s equivalent to the NSA releases a malware detection tool"},"content":{"rendered":"<p>At <em>The Register<\/em>, <a href=\"https:\/\/www.theregister.co.uk\/2017\/10\/20\/canadian_communications_security_establishment_open_sources_assemblyline\/\" rel=\"noopener\" target=\"_blank\">Simon Sharwood<\/a> looks at a new security tool (in open source) released by the Communications Security Establishment (CSE, formerly known as CSEC):<\/p>\n<blockquote><p>Canada&#8217;s Communications Security Establishment has open-sourced its own malware detection tool.<\/p>\n<p>The Communications Security Establishment (CSE) is a signals intelligence agency roughly equivalent to the United Kingdom&#8217;s GCHQ, the USA&#8217;s NSA and Australia&#8217;s Signals Directorate. It has both intelligence-gathering and advisory roles.<\/p>\n<p>It also has a tool called \u201cAssemblyline\u201d which it describes as a \u201cscalable distributed file analysis framework\u201d that can \u201cdetect and analyse malicious files as they are received.\u201d<\/p>\n<p>[&#8230;]<\/p>\n<p>The tool was written in Python and can run on a single PC or in a cluster. CSE claims it can process millions of files a day. \u201cAssemblyline was built using public domain and open-source software; however the majority of the code was developed by CSE.\u201d Nothing in it is commercial technology and the CSE says it is \u201ceasily integrated in to existing cyber defence technologies.\u201d<\/p>\n<p>The tool&#8217;s been released under the MIT licence and is available <a href=\"https:\/\/bitbucket.org\/account\/user\/cse-assemblyline\/projects\/AL\" rel=\"noopener\" target=\"_blank\">here<\/a>.<\/p>\n<p>The organisation says it released the code because its job is to improve Canadian&#8217;s security, and it&#8217;s confident Assemblyline will help. The CSE&#8217;s head of IT security Scott Jones has also told the Canadian Broadcasting Corporation that the release has a secondary goal of demystifying the organisation.<\/p><\/blockquote>\n","protected":false},"excerpt":{"rendered":"<p>At The Register, Simon Sharwood looks at a new security tool (in open source) released by the Communications Security Establishment (CSE, formerly known as CSEC): Canada&#8217;s Communications Security Establishment has open-sourced its own malware detection tool. The Communications Security Establishment (CSE) is a signals intelligence agency roughly equivalent to the United Kingdom&#8217;s GCHQ, the USA&#8217;s [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":35193,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"jetpack_post_was_ever_published":false,"_jetpack_newsletter_access":"","_jetpack_dont_email_post_to_subs":false,"_jetpack_newsletter_tier_id":0,"_jetpack_memberships_contains_paywalled_content":false,"_jetpack_memberships_contains_paid_content":false,"footnotes":""},"categories":[6,15],"tags":[914,58,93,334],"class_list":["post-40541","post","type-post","status-publish","format-standard","hentry","category-cancon","category-technology","tag-csec","tag-internet","tag-opensource","tag-security"],"jetpack_featured_media_url":"https:\/\/quotulatiousness.ca\/blog\/wp-content\/uploads\/2016\/06\/favicon.png","jetpack_shortlink":"https:\/\/wp.me\/p2hpV6-axT","jetpack_sharing_enabled":true,"_links":{"self":[{"href":"https:\/\/quotulatiousness.ca\/blog\/wp-json\/wp\/v2\/posts\/40541","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/quotulatiousness.ca\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/quotulatiousness.ca\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/quotulatiousness.ca\/blog\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/quotulatiousness.ca\/blog\/wp-json\/wp\/v2\/comments?post=40541"}],"version-history":[{"count":1,"href":"https:\/\/quotulatiousness.ca\/blog\/wp-json\/wp\/v2\/posts\/40541\/revisions"}],"predecessor-version":[{"id":40542,"href":"https:\/\/quotulatiousness.ca\/blog\/wp-json\/wp\/v2\/posts\/40541\/revisions\/40542"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/quotulatiousness.ca\/blog\/wp-json\/wp\/v2\/media\/35193"}],"wp:attachment":[{"href":"https:\/\/quotulatiousness.ca\/blog\/wp-json\/wp\/v2\/media?parent=40541"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/quotulatiousness.ca\/blog\/wp-json\/wp\/v2\/categories?post=40541"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/quotulatiousness.ca\/blog\/wp-json\/wp\/v2\/tags?post=40541"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}