DEVELOPMENT OF A LABORATORY WORKSHOP ON ANALYSIS AND DETECTION OF RANKING PROGRAMS FOR CYBERSECURITY EDUCATIONAL PROGRAMS

Authors

DOI:

https://doi.org/10.28925/2663-4023.2026.33.1145

Keywords:

ransomware; malware analysis; threat detection; machine learning; laboratory practicum; cybersecurity; behavioral analysis; dynamic analysis

Abstract

The article addresses the issue of insufficient practical training of cybersecurity students in analyzing and detecting ransomware, which remains one of the most dangerous and rapidly evolving types of malicious software. Modern ransomware samples employ advanced encryption mechanisms, extensive command-and-control infrastructures, built-in anti-analysis techniques, and capabilities for bypassing traditional security tools. Consequently, effective specialist training requires not only theoretical knowledge but also well-developed practical skills in using static and dynamic analysis tools, behavioral threat detection methods, models for classifying malicious activity, machine learning and deep learning techniques, as well as EDR and SIEM systems in the context of real cyber incidents. The purpose of the study is to develop a laboratory practicum that provides comprehensive immersion into the processes of ransomware analysis and detection, contributing to the formation of the professional competencies required in the field of cyber defense. The paper substantiates the structure and content of laboratory tasks covering the analysis of the ransomware attack lifecycle, investigation of behavioral characteristics of malicious processes, work with test datasets and dynamic environments, development of machine-learning-based detection algorithms, dataset creation and processing, and evaluation of model accuracy and robustness. The proposed practicum can be integrated into academic courses on cybersecurity, digital forensics, and malware analysis. The developed approach enhances the quality of professional training, strengthens the practical component of the educational process, and creates conditions for student research in modeling, analyzing, and countering modern cyber threats. The results may be applied in higher education institutions, professional training centers, and cyber ranges to deepen the practical competencies of future cybersecurity specialists.

Downloads

Download data is not yet available.

References

Alraizza, A., & Algarni, A. (2023). Ransomware detection using machine learning: A survey. Big Data and Cognitive Computing, 7(3), 143. https://doi.org/10.3390/bdcc7030143

Hussain, A., Saadia, A., Alhussein, M., Gul, A., & Aurangzeb, K. (2024). Enhancing ransomware defense: Deep learning-based detection and family-wise classification of evolving threats. PeerJ Computer Science, 10, e2546. https://doi.org/10.7717/peerj-cs.2546

Jawad, S., & Ahmed, H. M. (2024). Machine learning approaches to ransomware detection: A comprehensive review. International Journal of Safety and Security Engineering, 14(6), 1963-1973. https://doi.org/10.18280/ijsse.140630

Zhuravchak, D. (2024). Monitoring ransomware using extended Berkeley Packet Filter (eBPF) and machine learning. Science-Based Technologies, 60(4), 352-363. https://doi.org/10.18372/2310-5461.60.18029

Ispahany, J., Islam, M. R., Islam, M. Z., & Khan, M. A. (2024). Ransomware detection using machine learning: A review, research limitations and future directions. IEEE Access. https://doi.org/10.1109/ACCESS.2024.3397921

Zhuravchak, D., Kiiko, E., & Dudykevych, V. (2023). Using eBPF to identify ransomware that uses DGA DNS queries. Information Technology and Security, 11(2), 166-174. https://doi.org/10.20535/2411-1031.2023.11.2.293760

Lysenko, S., Atamaniuk, O., Bokhonko, O., & Vorobiyov, V. (2023). Method for detection of ransomware cyber threats based on honeypot: State-of-the-art. Herald of Khmelnytskyi National University. Technical Sciences, 317(1),300-309. https://doi.org/10.31891/2307-5732-2023-317-1-300-309

Haponenko, O. I., Marchenko, V. V., & Gaidur, G. I. (2020). Advantages and disadvantages of honeypot traps for hackers. Modern Information Security. https://doi.org/10.31673/2409-7292.2020.025968

Zhuravchak, D., Dudykevych, V., & Tolkachova, A. (2023). Study of the structure of the system for detecting and preventing ransomware attacks based on endpoint detection and response. Cybersecurity: Education, Science, Technique, 3(19), 69-82. https://doi.org/10.28925/2663-4023.2023.19.6982

Rele, M., Samuel, J., Patil, D., & Krishnan, U. (2025). Exploring ransomware detection based on artificial intelligence and machine learning. Procedia Computer Science, 252, 548–556. https://doi.org/10.1016/j.procs.2025.01.014

Kritika, E. (2024). A comprehensive literature review on ransomware detection using deep learning. Cyber Security and Applications, 100078. https://doi.org/10.1016/j.csa.2024.100078

Downloads


Abstract views: 15

Published

2026-06-25

How to Cite

Kitsel, N., & Borysenko, O. (2026). DEVELOPMENT OF A LABORATORY WORKSHOP ON ANALYSIS AND DETECTION OF RANKING PROGRAMS FOR CYBERSECURITY EDUCATIONAL PROGRAMS. Electronic Professional Scientific Journal «Cybersecurity: Education, Science, Technique», 1(33), 504–511. https://doi.org/10.28925/2663-4023.2026.33.1145

Issue

Vol. 1 No. 33 (2026): Cybersecurity: Education, Science, Technique

Section

Articles

License

Copyright (c) 2026 Наталія Кіцель, Оксана Борисенко

Creative Commons License

This work is licensed under a Creative Commons Attribution-NonCommercial-ShareAlike 4.0 International License.