The AMASS 2026 workshop aims to bring together researchers, practitioners, and industry experts to advance the state of the art in malware analysis, software security, and threat intelligence. With the rapid evolution of malware ecosystems, automated analysis, and software supply chain threats, there is a pressing need for a focused venue to discuss novel approaches, share tools and datasets, and foster collaborations between academia and industry.


We invite submissions of original research papers, work-in-progress contributions, and industrial case studies in (but not limited to) the following areas:

Malware detection, classification, and lineage analysis

Dynamic and static binary analysis techniques

Reverse engineering methodologies and tools

Malware detection in encrypted traffic

Adversarial machine learning in malware classification

Automated software vulnerability discovery and exploitation prevention

Program analysis, fuzzing, and software hardening techniques

Software supply chain, dependency, and package ecosystem attacks

Secure compilation, code rewriting, and binary instrumentation

Memory-safe language transitions and security implications

AI for malware detection and threat modelling

AI-assisted vulnerability discovery and patch synthesis

LLM-based code auditing and secure code generation

LLMs for secure software engineering workflows

Generative AI for malware creation and countermeasure

Explainable and interpretable AI for security-critical systems

Federated and privacy-preserving ML in malware analysis

Threat intelligence and cybercrime ecosystem modelling

Malware-as-a-Service and AI-powered threat campaigns

Blockchain-based threat tracking and provenance

Human factors in malware development, defence, and awareness

Social engineering and cognitive deception in malware distribution

Security of mobile, embedded, IoT, and cloud-native software systems

Firmware and IoT malware analysis

Edge and federated IoT malware detection

Open datasets and reproducible research in malware analysis and vulnerability analysis

Long Papers: These should be at most 12 pages, including the bibliography and well-marked appendices, using the latest ACM Sigconf style conference template only. Papers should present original research work.

Short Papers: These should be at most 6 pages, including the bibliography and well-marked appendices, using the latest ACM Sigconf style conference template only. Papers can present works in progress, descriptions of available datasets, and data collection efforts.

The reviewers and the program committee members are not required to read the appendices; therefore, the paper should be intelligible without them. All submissions must be written in English. They must not substantially overlap papers that have been published or simultaneously submitted to a journal or a conference with proceedings.

AMASS 2026 will follow a double-blind peer review process, and all papers not desk-rejected will be reviewed by a minimum of three subject experts.

The papers must be submitted electronically. The proceedings of the AMASS workshop will be published in the ACM Digital Library and available during the conference.