@inproceedings{wagner_knowledge-assisted_2016, address = {Vienna, Austria}, title = {Knowledge-{Assisted} {Rule} {Building} for {Malware} {Analysis}}, abstract = {Due to the increasing threat from malicious software (malware), monitoring of vulnerable systems is becoming increasingly important which includes the need to log and analyze activity encompasses networks, individual computers, as well as mobile devices. Currently available tools in behavior-based malware analysis do not meet all experts’ needs, such as selecting different rules, categorizing them by their task and storing them in the database as well as manually adapting and/or tuning of found rules. To close this gap, we designed CallNet, a knowledge-assisted visual analytics and rule building tool for behavior-based malware analysis. The paper at hand is a design study which describes the design, a usage scenario, and the paper prototype evaluation. We report on the validation of CallNet by expert reviews, reflect the gained insights of the reviews and discuss the advantages and disadvantages of the prototype design including the applied visualization techniques.}, booktitle = {Proceedings of the 10th {Forschungsforum} der oesterreichischen {Fachhochschulen}}, publisher = {FH des BFI Wien}, author = {Wagner, Markus and Rind, Alexander and Rottermanner, Gernot and Niederer, Christina and Aigner, Wolfgang}, year = {2016}, note = {Projekt: KAVA-Time}, keywords = {2016, Department Medien und Digitale Technologien, Department Technologie, Forschungsgruppe Digital Technologies, Forschungsgruppe Media Computing, Institut für Creative Media Technologies, Publikationstyp Präsentation, Publikationstyp Schriftpublikation, peer-reviewed, ⛔ No DOI found}, }