Arash Habibi Lashkari

Faculty of Liberal Arts & Professional Studies » Faculty & Staff » Faculty Profiles

Associate Professor
Canada Research Chair in Cybersecurity

Email: ahabibil@yorku.ca
Primary website: Personal Website
Secondary website: Official Webaite

Media Requests Welcome
Accepting New Graduate Students

Dr. Arash Habibi Lashkari is a Canada Research Chair (CRC) in Cybersecurity. He is a senior member of the IEEE and an Associate Professor at York University. He has over 25 years of teaching experience, spanning several international universities, and was responsible for designing the first cybersecurity Capture the Flag (CTF) competition for post-secondary students in Canada. He has been the recipient of 15 awards at international computer security competitions - including three gold awards - and was recognized as one of Canada’s Top 150 Researchers for 2017.
He is the author of ten published books and more than 110 academic articles on a variety of cybersecurity-related topics and the co-author of the national award- winning article series, “Understanding Canadian Cybersecurity Laws”, which was recently recognized with a Gold Medal at the 2020 Canadian Online Publishing Awards, remotely held in 2021.
Building on over two decades of concurrent industrial and development experience in network, software, and computer security, Dr. Lashkari’s current work involves the development of vulnerability detection technology to provide protection to network systems against cyberattacks. He simultaneously supervises multiple research and development teams who are working on several projects related to cybersecurity risk management, network traffic analysis, malware analysis, Honeynet and threat hunting.

More...

Degrees

Post-Doc (Mitacs Fellowship), University of New Brunswick (UNB)
PhD, University of Technology Malaysia (UTM)
MCS, University of Malaya (UM)

Community Contributions

Cybersecurity Open-Source Projects:
2022: AuthAttLyzer , Authorship Attribution Analyzer,
PDFMalLyzer, PDF Malware Analyzer,
IMAPBotLyzer, IMAP Bot AnaLyzer,

2021: VolmemLyzer, Analyzing memory snapshots for malware detection,

2020: AndroidAppLyzer, Static and Dynamic Android App analyzer,
DoHlyzer, DNS over HTTPS (DoH) traffic analyzer,

2018: Network Flow Meter (V3.0), An Ethernet traffic Bi-flow generator and analyzer for anomaly detection

2016: Network Flow Meter (V1.0), An Ethernet traffic flow generator and analyzer for anomaly detection

Cybersecurity Dataset Generation:
2022: Source Code Authorship Attribution Dataset
Obfuscated Malware Memory Analysis Dataset
Evasive Malicious PDF Dataset

2021: DNS Exfiltration Traffic Dataset
Malicious DNS Traffic Dataset

2020: DNS over HTTPS (DoH) Security Dataset,
Darknet Traffic 2020 ,
Android Malware Static Analysis Dataset,

2019: Investigation of Android Malware Dataset,
DDoS Traffic Dataset,

2018: Intrusion Detection Traffic 2018 Dataset,
Intrusion Detection Traffic 2017 Dataset,

2017: Android Malware Analysis Dataset,
Android Adware Analysis Dataset,

2016: VPN-nonVPN Traffic Dataset,
Tor-nonTor Traffic Dataset,
Malicious URLAnalysis Dataset

Talks and Speeches:
2020: Cybersecurity Data Repository, ACADIA University, Wolfville, NS (Feb 28th)
Cybersecurity Data Repository, Atlantic Canada Tech Talk, Saint John, NB (Feb 12th)

2019: Cybersecurity Data Repository, Mount Alisson University, Sackville, NB (Jan 23rd)
Cybersecurity Data Repository, UNB Saint John Campus, Saint John, NB (Nov 22nd)

Research Interests

Information Technologies , Science and Technology, Information Security, Network Security, Threat Hunting, Cybersecurity Risk Management

Awarded the Canadian Online Publishing Awards (COPAawardss) Gold Medal, on the Best Blog Column, Business Division for my UCCL article series, ON, Canada - 2020
Won the Teaching Innovation Award, University of New Brunswick (UNB), for proposing a new teaching methodology namely “Think-Qcussion”, Fredericton, NB, Canada - 2020
Won the Cybersecurity Research and Academic Leadership Award at International Cyber Security and Intelligence Conference (ICSIC), Toronto, ON, Canada - 2019
Awarded as the top 150 celebrating researchers who'll shape Canada's future by Mitacs, Vancouver, BC, Canada - 2017
Won the Runner-up Cybersecurity Academic Award of the year at International Cyber Security and Intelligence Conference (ICSIC), Toronto, ON, Canada - 2017
Award Gold medal in the 17th creation expo international institutions of higher education (PECIPTA2013) in Malaysia by the project "A Robust Graphical Password for Mobile Applications" from the minister of higher education, Malaysia - 2013
Award three silver and one bronze medals in the 24th international invention, innovation & technology exhibition (ITEX2013), Malaysia - 2013
Award Ttwo silver and two bronze medals in the 12th Malaysia technology expo 2013 (MTE2013), international invention and innovation expo, Malaysia - 2013
Award Gold Medal and title “Best of Security” in International Computer Competition in Brunei (International APICTA 2012) from Prince of Brunei, Brunei - 2012
Award “Best of Security” in Malaysia national competition of ICT (National APICTA-2012) from Ministry of Science, Technology and Innovation (MOSTI) “Dr. Maximus Johnity Ongkili” of Malaysia for project “A Robust Graphical Password by Steganography for Mobile”, Malaysia - 2012
Award “Bronze” in 14TH Industrial and Technology Exhibition (INATEX2012), Malaysia - 2012
Award “Bronze” in the 13th Industrial and Technology Exhibition (INATEX2011), Malaysia - 2011

Books

Publication

Year

"Understanding Cybersecurity Law and Digital Privacy: A Common Law Perspective", Melissa Lukings and Arash Habibi Lashkari, Future of Business and Finance book series, Springer, ISBN: 978-3-030-88704-9, 2021

2021

"Understanding Cybersecurity Management in FinTech: Challenges, Strategies, and Trends", Gurdip Kaur, Ziba Habibi Lashkari, Arash Habibi Lashkari, Future of Business and Finance book series, Springer, ISBN: 978-3-030-79915-1, 2021

2021

Book Chapters

Publication

Year

"An Introduction to Security Operations", Gurdip Kaur and Arash Habibi Lashkari, Advances in Cybersecurity Management, Springer, pp 463-481, https://doi.org/10.1007/978-3-030-71381-2_21, 2021

2021

"Information Technology Risk Management", Gurdip Kaur and Arash Habibi Lashkari, Advances in Cybersecurity Management, Springer, pp 269-287, https://doi.org/10.1007/978-3-030-71381-2_13, 2021

2021

"Understanding Cybersecurity Risk in FMI using HPC", Gurdip Kaur, Aziba Habibi Lashkari and Arash Habibi Lashkari, Cybersecurity & High-Performance Computing Environments, Taylor & Francis, 2021

2021

Journal Articles

Publication

Year

"A memory-based game-theoretic defensive approach for digital forensic investigators", Saeed Shafiee Hasanabadi, Arash Habibi Lashkari, Ali A. Ghorbani, Forensic Science International: Digital Investigation, Volume 38, 2021

2021

"A game-theoretic defensive approach for forensic investigators against rootkits", Saeed Shafiee Hasanabadi, Arash Habibi Lashkari, Ali A.Ghorbani, Forensic Science International: Digital Investigation, Volume 32, March 2020

2020

"A survey and research challenges of anti-forensics: Evaluation of game-theoretic models in simulation of forensic agents’ behaviour", Saeed Shafiee Hasanabadi, Arash Habibi Lashkari and Ali A. Ghorbani, Forensic Science International: Digital Investigation, vol 35, pages 301024, 2020

2020

"Classifying and clustering malicious advertisement uniform resource locators using deep learning", Xichen Zhang, Arash Habibi Lashkari, Ali Ghorbani, Computational Intelligence, Wiley, September 2020

2020

"KeyShield: A scalable and quantum-safe key management scheme", A Mohammed Y., AA Ghorbani, A Habibi Lashkari, IEEE Open Journal of the Communications Society, December 2020

2020

"An Evaluation Framework For Network Security Visualizations", Iman Sharafaldin, Arash Habibi Lashkari, Ali A. Ghorbani, Computers & Security, Volume 84, July 2019, Pages 70-92

2019

Conference Papers

Publication

Year

“A Novel Trust Model in Detecting Final-Phase Attacks in Substations”, Kwasi Boakye-Boateng, Ali A. Ghorbani, Arash Habibi Lashkari, The 18th International Conference on Privacy, Security and Trust (PST), 2021, Auckland, New Zealand.

2021

“Adaptive User Profiling with Online Incremental Machine Learning for Security Information and Event Management”, Dilli P. Sharma, Barjinder Kaur, Farzaneh Shoeleh, Masoud Erfani, Duc-Phong Le, Arash Habibi Lashkari, Ali A. Ghorbani, The Fifteenth International Conference on Emerging Security Information, Systems and Technologies (SECURWARE 2021), 2021, Athens, Greece.

2021

"Classifying Malicious Domains using DNS Traffic Analysis", Samaneh Mahdavifar, Nasim Maleki, Arash Habibi Lashkari, Matt Broda, Amir H. Razavi, The 19th IEEE International Conference on Dependable, Autonomic, and Secure Computing (DASC), Oct. 25-28, 2021, Calgary, Canada

2021

"EntropLyzer: Android Malware Classification and Characterization Using Entropy Analysis of Dynamic Characteristics", David Sean Keyes, Beiqi Li, Gurdip Kaur, Arash Habibi Lashkari, Francois Gagnon, Frederic Massicotte, Reconciling Data Analytics, Automation, Privacy, and Security: A Big Data Challenge (RDAAPS), McMaster University, ON, Canada, 2021

2021

“Lightweight Hybrid Data Exfiltration using DNS based on Machine Learning”, Samaneh Mahdavifar, Amgad Hanafy Salem, Princy Victor, Miguel Garzon, Amir H. Razavi, Natasha Hellberg, Arash Habibi Lashkari, The 11th IEEE International Conference on Communication and Network Security (ICCNS), Dec. 3-5, 2021, Beijing Jiaotong University, Weihai, China.

2021

“Towards Query-efficient Black-box Adversarial Attack on Text Classification Models”, Mohammad Mehdi Yadollahi, Arash Habibi Lashkari, Ali A. Ghorbani, The 18th International Conference on Privacy, Security and Trust (PST), 2021, Auckland, New Zealand.

2021

“User Profiling on Universal Data Insights tool on IBM Cloud Pak for Security”, Farzaneh Shoeleh, Masoud Erfani, Saeed Shafeiee Hasanabadi, Duc-Phong Le, Arash Habibi Lashkari, Adam Frank, Ali A. Ghorbani, The 18th International Conference on Privacy, Security and Trust (PST), 2021, Auckland, New Zealand.

2021

"VolMemLyzer: Volatile Memory Analyzer for Malware Classification using Feature Engineering", Arash Habibi Lashkari, Beiqi Li, Tristan Lucas Carrier, Gurdip Kaur, Reconciling Data Analytics, Automation, Privacy, and Security: A Big Data Challenge (RDAAPS), McMaster University, ON, Canada

2021

"Detection of DoH Tunnels using Time-series Classification of Encrypted Traffic", Mohammadreza MontazeriShatoori, Logan Davidson, Gurdip Kaur and Arash Habibi Lashkari, The 5th Cyber Science and Technology Congress (2020) (CyberSciTech 2020), Vancouver, Canada, August 2020

2020

"DIDarknet: A Contemporary Approach to Detect and Characterize the Darknet Traffic using Deep Image Learning", Arash Habibi Lashkari, Gurdip Kaur, Abir Rahal, The 10th International Conference on Communication and Network Security (ICCNS2020), Tokyo, Japan, September 2020

2020

"DIDroid:Android Malware Classification and Characterization Using Deep Image Learning", Abir Rahali, Arash Habibi Lashkari, Gurdip Kaur, Laya Taheri, Francois Gagnon, Frédéric Massicotte, The 10th International Conference on Communication and Network Security (ICCNS2020), Tokyo, Japan, September 2020

2020

"Intrusion Traffic Detection and Characterization using Deep Image Learning", Gurdip Kaur, Arash Habibi Lashkari and Abir Rahali, The 5th Cyber Science and Technology Congress (2020) (CyberSciTech 2020), Vancouver, Canada, August 2020

2020

"Developing Realistic Distributed Denial of Service (DDoS) Attack Dataset and Taxonomy", Iman Sharafaldin, Arash Habibi Lashkari, Saqib Hakak, and Ali A. Ghorbani, IEEE 53rd International Carnahan Conference on Security Technology, Chennai, India, 2019

2019

"Developing Realistic Distributed Denial of Service (DDoS) Attack Dataset and Taxonomy", Iman Sharafaldin, Arash Habibi Lashkari, Saqib Hakak, Ali A. Ghorbani, IEEE 53rd International Carnahan Conference on Security Technology, Chennai, India, 2019, Pages 70-92

2019

"Extensible Android Malware Detection and Family Classification Using Network-Flows and API-Calls", Laya Taheri, Andi Fitriah Abdulkadir, Arash Habibi Lashkari, The IEEE (53rd) International Carnahan Conference on Security Technology, India, 2019

2019

"Probabilistic Classification for Industrial Cyber Risk Using Deep Neural Network", Xichen Zhang, Arash Habibi Lashkari, Nasim Maleki, Joseph F. Mudge, Ali A. Ghorbani, Computers & Security, The 2019 International Conference on Security and Management (SAM2019), USA

2019

"Securing GOOSE: The Return of One-Time Pads", Kwasi Boakye, Arash Habibi Lashkari, The IEEE (53rd) International Carnahan Conference on Security Technology, India, 2019

2019

"The Next Generation of Robust Linux Memory Acquisition Technique via Sequential Memory Dumps at Designated Time Intervals", Saeed Shafiee Hasanabadi, Arash Habibi Lashkari, Ali Ghorbani, Proceeding of the IEEE ICCST'18, Montreal, Quebec, Oct. 2018

2018

"Toward Developing a Systematic Approach to Generate Benchmark Android Malware Datasets and Classification", Arash Habibi Lashkari, Laya Taheri, Andi Fitriah, Ali Ghorbani, Proceeding of the IEEE ICCST'18, Montreal, Quebec, Oct. 2018

2018

"Toward Generating a New Intrusion Detection Dataset and Intrusion Traffic Characterization", Iman Sharafaldin, Arash Habibi Lashkari and Ali A. Ghorbani, 4th International Conference on Information Systems Security and Privacy (ICISSP), Purtogal, January 2018

2018

"A Survey Leading to a New Evaluation Framework for Network-based Botnet Detection", Arash Habibi Lashkari, Gerard Draper Gil, Jonathan Edward Keenan, Kenneth Fon Mbah, Ali A. Ghorbani, 7th International Conference on Communication and Network Security (ICCNS 2017), Tokyo, Japan, 2017

2017

"Characterization of Tor Traffic Using Time Based Features", Arash Habibi Lashkari, Gerard Draper-Gil, Mohammad Saiful Islam Mamun and Ali A. Ghorbani, In the proceeding of the 3rd International Conference on Information System Security and Privacy, SCITEPRESS, Porto, Portugal

2017

"Towards a Network-Based Framework for Android Malware Detection and Characterization", Arash Habibi Lashkari, Andi Fitriah A.Kadir, Hugo Gonzalez, Kenneth Fon Mbah and Ali A. Ghorbani, In the proceeding of the 15th International Conference on Privacy, Security and Trust, PST, Calgary, Canada, 2017

2017

"An Evaluation Framework for Intrusion Detection Dataset", Amirhossein Gharib, Iman Sharafaldin, Arash Habibi Lashkari and Ali A. Ghorbani, International Conference on Information Science and Security (ICISS), IEEE, Thailand

2016

"Characterization of Encrypted and VPN Traffic Using Time-Related Features", Gerard Drapper Gil, Arash Habibi Lashkari, Mohammad Mamun, Ali A. Ghorbani, In Proceedings of the 2nd International Conference on Information Systems Security and Privacy(ICISSP 2016) , pages 407-414, Rome , Italy

2016

"Detecting Malicious URLs Using Lexical Analysis", Mohammad Saiful Islam Mamun, Mohammad Ahmad Rathore, Arash Habibi Lashkari, Natalia Stakhanova, Ali A. Ghorbani, NSS16, 467-482

2016

Degrees

Post-Doc (Mitacs Fellowship), University of New Brunswick (UNB)
PhD, University of Technology Malaysia (UTM)
MCS, University of Malaya (UM)

Community Contributions

Cybersecurity Open-Source Projects:
2022: AuthAttLyzer , Authorship Attribution Analyzer,
PDFMalLyzer, PDF Malware Analyzer,
IMAPBotLyzer, IMAP Bot AnaLyzer,

2021: VolmemLyzer, Analyzing memory snapshots for malware detection,

2020: AndroidAppLyzer, Static and Dynamic Android App analyzer,
DoHlyzer, DNS over HTTPS (DoH) traffic analyzer,

2018: Network Flow Meter (V3.0), An Ethernet traffic Bi-flow generator and analyzer for anomaly detection

2016: Network Flow Meter (V1.0), An Ethernet traffic flow generator and analyzer for anomaly detection

Cybersecurity Dataset Generation:
2022: Source Code Authorship Attribution Dataset
Obfuscated Malware Memory Analysis Dataset
Evasive Malicious PDF Dataset

2021: DNS Exfiltration Traffic Dataset
Malicious DNS Traffic Dataset

2020: DNS over HTTPS (DoH) Security Dataset,
Darknet Traffic 2020 ,
Android Malware Static Analysis Dataset,

2019: Investigation of Android Malware Dataset,
DDoS Traffic Dataset,

2018: Intrusion Detection Traffic 2018 Dataset,
Intrusion Detection Traffic 2017 Dataset,

2017: Android Malware Analysis Dataset,
Android Adware Analysis Dataset,

2016: VPN-nonVPN Traffic Dataset,
Tor-nonTor Traffic Dataset,
Malicious URLAnalysis Dataset

Talks and Speeches:
2020: Cybersecurity Data Repository, ACADIA University, Wolfville, NS (Feb 28th)
Cybersecurity Data Repository, Atlantic Canada Tech Talk, Saint John, NB (Feb 12th)

2019: Cybersecurity Data Repository, Mount Alisson University, Sackville, NB (Jan 23rd)
Cybersecurity Data Repository, UNB Saint John Campus, Saint John, NB (Nov 22nd)

Research Interests

Information Technologies , Science and Technology, Information Security, Network Security, Threat Hunting, Cybersecurity Risk Management

Awards

Awarded the Canadian Online Publishing Awards (COPAawardss) Gold Medal, on the Best Blog Column, Business Division for my UCCL article series, ON, Canada - 2020
Won the Teaching Innovation Award, University of New Brunswick (UNB), for proposing a new teaching methodology namely “Think-Qcussion”, Fredericton, NB, Canada - 2020
Won the Cybersecurity Research and Academic Leadership Award at International Cyber Security and Intelligence Conference (ICSIC), Toronto, ON, Canada - 2019
Awarded as the top 150 celebrating researchers who'll shape Canada's future by Mitacs, Vancouver, BC, Canada - 2017
Won the Runner-up Cybersecurity Academic Award of the year at International Cyber Security and Intelligence Conference (ICSIC), Toronto, ON, Canada - 2017
Award Gold medal in the 17th creation expo international institutions of higher education (PECIPTA2013) in Malaysia by the project "A Robust Graphical Password for Mobile Applications" from the minister of higher education, Malaysia - 2013
Award three silver and one bronze medals in the 24th international invention, innovation & technology exhibition (ITEX2013), Malaysia - 2013
Award Ttwo silver and two bronze medals in the 12th Malaysia technology expo 2013 (MTE2013), international invention and innovation expo, Malaysia - 2013
Award Gold Medal and title “Best of Security” in International Computer Competition in Brunei (International APICTA 2012) from Prince of Brunei, Brunei - 2012
Award “Best of Security” in Malaysia national competition of ICT (National APICTA-2012) from Ministry of Science, Technology and Innovation (MOSTI) “Dr. Maximus Johnity Ongkili” of Malaysia for project “A Robust Graphical Password by Steganography for Mobile”, Malaysia - 2012
Award “Bronze” in 14TH Industrial and Technology Exhibition (INATEX2012), Malaysia - 2012
Award “Bronze” in the 13th Industrial and Technology Exhibition (INATEX2011), Malaysia - 2011

All Publications

Book Chapters

Publication

Year

"An Introduction to Security Operations", Gurdip Kaur and Arash Habibi Lashkari, Advances in Cybersecurity Management, Springer, pp 463-481, https://doi.org/10.1007/978-3-030-71381-2_21, 2021

2021

"Information Technology Risk Management", Gurdip Kaur and Arash Habibi Lashkari, Advances in Cybersecurity Management, Springer, pp 269-287, https://doi.org/10.1007/978-3-030-71381-2_13, 2021

2021

"Understanding Cybersecurity Risk in FMI using HPC", Gurdip Kaur, Aziba Habibi Lashkari and Arash Habibi Lashkari, Cybersecurity & High-Performance Computing Environments, Taylor & Francis, 2021

2021

Books

Publication

Year

2021

Journal Articles

Publication

Year

2021

2020

"KeyShield: A scalable and quantum-safe key management scheme", A Mohammed Y., AA Ghorbani, A Habibi Lashkari, IEEE Open Journal of the Communications Society, December 2020

2020

"An Evaluation Framework For Network Security Visualizations", Iman Sharafaldin, Arash Habibi Lashkari, Ali A. Ghorbani, Computers & Security, Volume 84, July 2019, Pages 70-92

2019

Conference Papers

Publication

Year

2021

2020

2019

"Securing GOOSE: The Return of One-Time Pads", Kwasi Boakye, Arash Habibi Lashkari, The IEEE (53rd) International Carnahan Conference on Security Technology, India, 2019

2019

2018

2017

2016

"Detecting Malicious URLs Using Lexical Analysis", Mohammad Saiful Islam Mamun, Mohammad Ahmad Rathore, Arash Habibi Lashkari, Natalia Stakhanova, Ali A. Ghorbani, NSS16, 467-482

2016

Current Courses

Term	Course Number	Section	Title	Type
Winter 2025	AP/ITEC4710 3.0	M	Network Security and Digital Forensics	LECT

Upcoming Courses

Term	Course Number	Section	Title	Type
Summer 2025	GS/ITEC6340 3.0	A	Cyber Threat Intelligence (CTI)	LECT