Use Your Enemies: Tracking Botnets with Bots Botconf 2017 Wednesday | 14:55 – 15:45 Jarosław Jedynak 🗣 | Paweł Srokosz 🗣 Botnets are a curious thing for malware researchers. Although we’re constantly trying to shut them down and stop the responsible people, we’re also focusing a lot of attention on studying and analysing their inner workings in …
SOCKs as a Service, Botnet Discovery Botconf 2017 Wednesday | 15:45 – 16:15 Christopher Baker 🗣 | Allison Nixon 🗣 | Chad Seaman On the internet, no one knows you’re a dog, but they know that you are accessing their website from an IP announced by an ASN that belongs to an ISP on the East Coast of the …
Automation Of Internet-Of-Things Botnets Takedown By An ISP Botconf 2017 Wednesday | 16:45 – 17:15 Sébastien Mériot 🗣 For the past 12 months, the Internet-Of-Things botnets have made the headlines. Behind the media noise lies a threat that could be easily remedied by taking appropriate actions to discourage the herders which, most of the time, …
Automation Of Internet-Of-Things Botnets Takedown By An ISP Read More »
Malware Uncertainty Principle: an Alteration of Malware Behavior by Close Observation Botconf 2017 Thursday | 10:20 – 10:50 Maria Jose Erquiaga 🗣 | Sebastián García | Carlos Garcia Garino During the last couple of years there has been an important surge on the use of HTTPs by malware. The exact reason for this increase is not completely understood yet, …
Malware Uncertainty Principle: an Alteration of Malware Behavior by Close Observation Read More »
Knock Knock… Who’s there? admin admin, Get In! An Overview of the CMS Brute-Forcing Malware Landscape Botconf 2017 Thursday | 11:10 – 11:50 Anna Shirokova 🗣 | Veronica Valeros With more than 18M websites on the internet using WordPress [1] and hundreds of known vulnerabilities reported [2], this and other well-known Content Management Systems (CMS) have been …
Automation Attacks at Scale Botconf 2017 Thursday | 11:50 – 12:30 Will Glazier 🗣 | Mayank Dhiman Automation attacks are currently plaguing organizations in industries ranging from financial to retail, to gaming & entertainment. These attacks exploit stolen credential leaks, black market & custom attack toolkits, and massively scalable infrastructure to launch widely distributed attacks that are …
The Good, the Bad, the Ugly: Handling the Lazarus Incident in Poland Botconf 2017 Thursday | 12:30 – 13:00 Maciej Kotowicz 🗣 Edit
Malpedia: A Collaborative Effort to Inventorize the Malware Landscape Botconf 2017 Thursday | 14:00 – 15:00 Daniel Plohmann 🗣 | Martin Clauß | Steffen Enders | Elmar Padilla In this paper, we introduce Malpedia, our take on a collaborative platform for the curation of a coherent corpus of cleanly labeled, unpacked malware samples. Illustrating one of the use cases for this …
Malpedia: A Collaborative Effort to Inventorize the Malware Landscape Read More »
YANT-Yet Another Nymaim Talk Botconf 2017 Thursday | 15:00 – 15:30 Sebastian Eschweiler 🗣 We have already heard of Nymaim’s famous obfuscation techniques, such as WinAPI wrappers, function detours, encrypted memcpy, and others. But have you heard of heaven’s gate, hybrid binaries and thread obfuscation? In this presentation, we will dive into some of the …
Augmented Intelligence to Scale Humans Fighting Botnets Botconf 2017 Thursday | 16:00 – 16:30 Yuriy Yuzifovich 🗣 | Hongliang Liu | Alexey Sarychev | Amir Asiaee We propose and implement a novel method of discovering botnet activities by identifying new core domains (domains that are directly below a TLD) that appear in real-time DNS query traffic as suspicious, and discovering botnet …
Augmented Intelligence to Scale Humans Fighting Botnets Read More »