{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,7,10]],"date-time":"2026-07-10T09:16:29Z","timestamp":1783674989997,"version":"3.55.0"},"publisher-location":"New York, NY, USA","reference-count":21,"publisher":"ACM","license":[{"start":{"date-parts":[[2026,5,19]],"date-time":"2026-05-19T00:00:00Z","timestamp":1779148800000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/creativecommons.org\/licenses\/by\/4.0\/legalcode"}],"funder":[{"name":"Research Ireland","award":["23\/US\/3939"],"award-info":[{"award-number":["23\/US\/3939"]}]}],"content-domain":{"domain":["dl.acm.org"],"crossmark-restriction":true},"short-container-title":[],"published-print":{"date-parts":[[2026,5,19]]},"DOI":"10.1145\/3801488.3807898","type":"proceedings-article","created":{"date-parts":[[2026,7,10]],"date-time":"2026-07-10T08:40:14Z","timestamp":1783672814000},"page":"57-64","update-policy":"https:\/\/doi.org\/10.1145\/crossmark-policy","source":"Crossref","is-referenced-by-count":0,"title":["Detecting Vibe-Coded Malware"],"prefix":"10.1145","author":[{"ORCID":"https:\/\/orcid.org\/0000-0002-4020-0889","authenticated-orcid":false,"given":"Utz","family":"Roedig","sequence":"first","affiliation":[{"name":"School of Computer Science and Information Technology (CSIT), University College Cork, Cork, Ireland"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"ORCID":"https:\/\/orcid.org\/0000-0003-1273-6501","authenticated-orcid":false,"given":"Se\u00e1n \u00d3g","family":"Murphy","sequence":"additional","affiliation":[{"name":"School of Computer Science and Information Technology (CSIT), University College Cork, Cork, Ireland"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"ORCID":"https:\/\/orcid.org\/0000-0001-6844-6365","authenticated-orcid":false,"given":"Ita","family":"Ryan","sequence":"additional","affiliation":[{"name":"School of Computer Science and Information Technology (CSIT), University College Cork, Cork, Ireland"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"ORCID":"https:\/\/orcid.org\/0000-0002-0767-7888","authenticated-orcid":false,"given":"Cormac","family":"Sreenan","sequence":"additional","affiliation":[{"name":"School of Computer Science and Information Technology (CSIT), University College Cork, Cork, Ireland"}],"role":[{"vocabulary":"crossref","role":"author"}]}],"member":"320","published-online":{"date-parts":[[2026,7,10]]},"reference":[{"key":"e_1_3_3_2_2_2","volume-title":"YARA Forge","year":"2026","unstructured":"2026. YARA Forge. https:\/\/yarahq.github.io\/"},{"key":"e_1_3_3_2_3_2","doi-asserted-by":"publisher","unstructured":"Ra\u00fal Acosta-Bermejo Jos\u00e9\u00a0Alexis Terrazas-Chavez and Eleazar Aguirre-Anaya. 2025. Automated Malware Source Code Generation via Uncensored LLMs and Adversarial Evasion of Censored Model. Applied Sciences 15 17 (2025). 10.3390\/app15179252","DOI":"10.3390\/app15179252"},{"key":"e_1_3_3_2_4_2","doi-asserted-by":"publisher","unstructured":"Abdullah Alabdulatif and Navod\u00a0Neranjan Thilakarathne. 2025. Hacking Exposed: Leveraging Google Dorks Shodan and Censys for Cyber Attacks and the Defense Against Them. Computers 14 1 (2025) 24. 10.3390\/computers14010024","DOI":"10.3390\/computers14010024"},{"key":"e_1_3_3_2_5_2","unstructured":"Hisham Alasmary Afsah Anwar Ahmed Abusnaina Abdulrahman Alabduljabbar Mohammad Abuhamad An Wang DaeHun Nyang Amro Awad and David Mohaisen. 2021. ShellCore: Automating Malicious IoT Software Detection by Using Shell Commands Representation. arXiv preprint arXiv:https:\/\/arXiv.org\/abs\/2103.14221 (2021). https:\/\/arxiv.org\/abs\/2103.14221"},{"key":"e_1_3_3_2_6_2","unstructured":"Anysphere Inc. 2026. Cursor: AI-Powered Code Editor. https:\/\/cursor.com\/. Accessed: 2026-02."},{"key":"e_1_3_3_2_7_2","doi-asserted-by":"publisher","unstructured":"Maha Charfeddine Habib\u00a0M. Kammoun Bechir Hamdaoui and Mohsen Guizani. 2024. ChatGPT\u2019s Security Risks and Benefits: Offensive and Defensive Use-Cases Mitigation Measures and Future Implications. IEEE Access 12 (2024) 30263\u201330310. 10.1109\/ACCESS.2024.3367792","DOI":"10.1109\/ACCESS.2024.3367792"},{"key":"e_1_3_3_2_8_2","unstructured":"Falco. 2026. What is Falco? https:\/\/falco.org\/about\/. Accessed: 2026-02."},{"key":"e_1_3_3_2_9_2","unstructured":"Florian Roth. 2026. yarGen. https:\/\/github.com\/Neo23x0\/yarGen. Accessed: 2026-02."},{"key":"e_1_3_3_2_10_2","doi-asserted-by":"publisher","unstructured":"Maanak Gupta Charankumar Akiri Kshitiz Aryal Eli Parker and Lopamudra Praharaj. 2023. From ChatGPT to ThreatGPT: Impact of Generative AI in Cybersecurity and Privacy. IEEE Access 11 (2023) 80218\u201380245. 10.1109\/ACCESS.2023.3300381","DOI":"10.1109\/ACCESS.2023.3300381"},{"key":"e_1_3_3_2_11_2","doi-asserted-by":"publisher","DOI":"10.1109\/SSD61670.2024.10549308"},{"key":"e_1_3_3_2_12_2","unstructured":"Mario Kahlhofer. 2026. TTP-based threat hunting with Dynatrace Security Analytics and Falco Alerts solves alert noise. https:\/\/www.dynatrace.com\/news\/blog\/ttp-based-threat-hunting-solves-alert-noise\/. Accessed: 2026-02."},{"key":"e_1_3_3_2_13_2","unstructured":"Mitre. 2026. MITRE ATT&CK. https:\/\/attack.mitre.org\/. Accessed: 2026-02."},{"key":"e_1_3_3_2_14_2","doi-asserted-by":"publisher","DOI":"10.1109\/SSCI47803.2020.9308179"},{"key":"e_1_3_3_2_15_2","doi-asserted-by":"publisher","unstructured":"Roberto Natella Pietro Liguori Cristina Improta Bojan Cukic and Domenico Cotroneo. 2024. AI Code Generators for Security: Friend or Foe? IEEE Security & Privacy 22 5 (2024) 73\u201381. 10.1109\/MSEC.2024.3355713","DOI":"10.1109\/MSEC.2024.3355713"},{"key":"e_1_3_3_2_16_2","doi-asserted-by":"publisher","DOI":"10.1145\/3607505.3607513"},{"key":"e_1_3_3_2_17_2","unstructured":"Constantinos Patsakis David Arroyo and Fran Casino. 2024. The Malware as a Service ecosystem. arXiv preprint arXiv:https:\/\/arXiv.org\/abs\/2405.04109. https:\/\/arxiv.org\/abs\/2405.04109"},{"key":"e_1_3_3_2_18_2","unstructured":"Utz Roedig Se\u00e1n\u00a0\u00d3g Murphy Ita Ryan and Cormac\u00a0J. Sreenan. 2026. Supplementary material for \u201cDetecting Vibe-Coded Malware\u201d. https:\/\/figshare.com\/s\/682a63c68fb49f7afb08"},{"key":"e_1_3_3_2_19_2","unstructured":"Sysdig. 2026. Falco Vanguard. https:\/\/github.com\/dadismad-com\/falco-vanguard. Accessed: 2026-02."},{"key":"e_1_3_3_2_20_2","unstructured":"VirusTotal. 2026. VTDIFF - Automatic YARA rules. https:\/\/docs.virustotal.com\/docs\/vtdiff-automatic-yara-rules. Accessed: 2026-02."},{"key":"e_1_3_3_2_21_2","unstructured":"VirusTotal \/ Google. 2026. yara-python \u2014 Python Bindings for YARA. https:\/\/github.com\/VirusTotal\/yara-python. Accessed: 2026-02."},{"key":"e_1_3_3_2_22_2","unstructured":"VirusTotal \/ Google. 2026. YARA \u2013 The Pattern Matching Swiss Knife for Malware Researchers. https:\/\/github.com\/VirusTotal\/yara. Accessed: 2026-02."}],"event":{"name":"CF '26 Companion: 23rd ACM International Conference on Computing Frontiers","location":"Catania Italy","acronym":"CF '26 Companion","sponsor":["SIGMICRO ACM Special Interest Group on Microarchitectural Research and Processing"]},"container-title":["Proceedings of the 23rd ACM International Conference on Computing Frontiers: Workshops and Special Sessions"],"original-title":[],"link":[{"URL":"https:\/\/dl.acm.org\/doi\/pdf\/10.1145\/3801488.3807898","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2026,7,10]],"date-time":"2026-07-10T08:41:45Z","timestamp":1783672905000},"score":1,"resource":{"primary":{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/3801488.3807898"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2026,5,19]]},"references-count":21,"alternative-id":["10.1145\/3801488.3807898","10.1145\/3801488"],"URL":"https:\/\/doi.org\/10.1145\/3801488.3807898","relation":{},"subject":[],"published":{"date-parts":[[2026,5,19]]},"assertion":[{"value":"2026-07-10","order":3,"name":"published","label":"Published","group":{"name":"publication_history","label":"Publication History"}}]}}