Red Teamer 2.0: Automating the C&C Set up Process Botconf 2018 Friday | 09:50 – 10:10 Charles Ibrahim 🗣 This talk follows the amazing documentation provided by Steve Borosh (@424f424f) and Jeff Dimmock’s (@bluscreenofjeff) on their dedicated repo.Besides, it follows several experiences of red team operations leveraging the tips issued by these authors.We will describe […]
Red Teamer 2.0: Automating the C&C Set up Process Read More »
ExtREme Malware Analysis Botconf 2018 Tuesday | 11:00 – 18:00 Maciej Kotowicz 🗣 Edit
ExtREme Malware Analysis Read More »
Introducing a new Cyber Threat Detection System: How Threat Intelligence Halts Tomorrow’s Botnets Botconf 2018 Tuesday | 14:00 – 18:00 Solomon Sonya 🗣 Edit
Detect, Investigate and Respond using MISP, TheHive & Cortex Botconf 2018 Tuesday | 14:00 – 18:00 Raphaël Vinot 🗣 | Danni Co 🗣 | Saâd Kadhi 🗣 Edit
Detect, Investigate and Respond using MISP, TheHive & Cortex Read More »
Triada: the Past, the Present, the (Hopefully not Existing) Future Botconf 2018 Friday | 14:00 – 14:50 Łukasz Siewierski 🗣 Triada is an Android threat known within the malware research field for a couple of years. Despite that, it still remains a very interesting threat as their authors did something very rarely seen in any
Triada: the Past, the Present, the (Hopefully not Existing) Future Read More »
The Snake Keeps Reinventing Itself Botconf 2018 Friday | 14:45 – 15:30 Matthieu Faou 🗣 After having tracked Turla’s activities for several years, we now have a unique understanding of their Tools, Tactics and Procedures (TTPs). In this talk, we would like to share this knowledge to help defenders protect their networks. Turla is an
The Snake Keeps Reinventing Itself Read More »
How many Mirai variants are there? Botconf 2018 Friday | 15:30 – 16:00 Wenji Qu 🗣 | Hui Wang 🗣 Mirai was soon open-sourced after overwhelming several high-profile targets including Krebsonsecurity, OVH, and DYN in Autumn 2016, which leads to a proliferation of Mirai variants in the past 2 years. For better fight against Mirai botnets, effective
How many Mirai variants are there? Read More »
APT Attack against the Middle East: The Big Bang Botconf 2018 Wednesday | 11:00 – 11:30 Aseel Kayal 🗣 | Lotem Finkelstein 🗣 Over the past few weeks, we discovered the comeback of an APT attack against the Middle East, and specifically against the Palestinian Authority. The APT group behind this attack launched a campaign over a
APT Attack against the Middle East: The Big Bang Read More »
Cutting the Wrong Wire: how a Clumsy Attacker Revealed a Global Cryptojacking Campaign Botconf 2018 Wednesday | 12:30 – 12:50 Renato Marinho 🗣 We have seen a massive spike in malicious crypto mining campaigns killing themselves for the chance to have their victim’s CPU. The shorter and shorter time window between vulnerability disclosure and cryptojacking
Cutting the Wrong Wire: how a Clumsy Attacker Revealed a Global Cryptojacking Campaign Read More »
How Much Should You Pay for your own Botnet ? Botconf 2018 Wednesday | 15:40 – 16:10 Antoine Rebstock 🗣 Cloud computing provides scalable and on-demand infrastructure, which seems to be the perfect way to host a botnet. This paper focuses on cloud-based botnets to perform legal DDoS resilience tests. We model the cost of
How Much Should You Pay for your own Botnet ? Read More »