Fwd: security theater seminar - 6.1.13 at 14:00 (room 146)
1 view
Skip to first unread message
Yossi Oren
Jan 4, 2013, 7:08:43 AM1/4/13
to security-theater-announcements
Sunday, 6 January 2013, at 14:00
Room 146, Labs Build.
Title: Messing Up the Kids Playground
The presentation will discuss the current situation with computer crime in
.ru and Asia-Pacific domains. We'll then walk through several case studies
from domain takeover and manipulation to mass infection incidents to obscure
targeted malware channels.
Further to this, we will demonstrate our system components - DNS traffic
analyzer, large scale network mapper and show how we are able to manually
and automatically identify on-going trends, detect domain names suitable for
sink-holing and pretty much automate the whole process. Additionally we will
demonstrate how a large-scale network mapper is suitable for identifying
easy targets and in combination with sandboxing components could be used to
map machines that have potentially been compromised by an attacker.
Speaker Bio:
Fyodor Yarochkin is a security analyst with P1sec and research assistant
with Academia Sinica/Taiwan. Fyodor is mostly known for his research work in
online crime analysis. building automated tools for proactive intrusion
detection and network monitoring. Fyodor's current research interests cover
large-scale network analysis, intrusion detection, threat prediction and
incident response.
Recorded at the 2012 Hack In The Box Security Conference, Kuala Lumpur
Malaysia, October 9, 2012
http://conference.hitb.org/hitbsecconf2012kul/fyodor-yarochkin/
Room 146, Labs Build.
Title: Messing Up the Kids Playground
The presentation will discuss the current situation with computer crime in
.ru and Asia-Pacific domains. We'll then walk through several case studies
from domain takeover and manipulation to mass infection incidents to obscure
targeted malware channels.
Further to this, we will demonstrate our system components - DNS traffic
analyzer, large scale network mapper and show how we are able to manually
and automatically identify on-going trends, detect domain names suitable for
sink-holing and pretty much automate the whole process. Additionally we will
demonstrate how a large-scale network mapper is suitable for identifying
easy targets and in combination with sandboxing components could be used to
map machines that have potentially been compromised by an attacker.
Speaker Bio:
Fyodor Yarochkin is a security analyst with P1sec and research assistant
with Academia Sinica/Taiwan. Fyodor is mostly known for his research work in
online crime analysis. building automated tools for proactive intrusion
detection and network monitoring. Fyodor's current research interests cover
large-scale network analysis, intrusion detection, threat prediction and
incident response.
Recorded at the 2012 Hack In The Box Security Conference, Kuala Lumpur
Malaysia, October 9, 2012
http://conference.hitb.org/hitbsecconf2012kul/fyodor-yarochkin/
Reply all
Reply to author
Forward
0 new messages