Microsoft Malware Detection
Published:
Project Overview
This big data classification project focuses on predicting whether a computer node is at risk of malware infection. By auditing OS versions, active setups, hardware specs, and security indicators, this model provides warning metrics for proactive patch deployments.
Key Features & Objectives
- High-Volume Telemetry Processing: Processes millions of machine state logs with high feature dimensionalities.
- Malware Propensity Auditing: Forecasts binary risk percentages for client machines.
- Class Distribution Optimization: Adjusts model weight balances to resolve target dataset skews.
Technical Stack & Technologies
- Language: Python
- Classifiers: LightGBM, XGBoost, Random Forests
- Data Scaling: Scikit-learn, Pandas, NumPy
- Big Data Optimization: Parquet, memory-saving category datatypes
Core Techniques & Feature Tuning
- Category Dimensionality Reduction: Configured feature maps and frequency-encoding schemas to manage high-cardinality category parameters (e.g. system configurations, update build numbers).
- Gradient-Boosted Decision Trees (GBDT): Utilized LightGBM’s histogram-based split nodes to accelerate training on dense telemetry data.
- Feature Importance Auditing: Audited SHAP values and GINI feature importances to rank factors (such as Windows Defender active states or system build revisions) driving malware vulnerability risks.