Black Ops of TCP/IP 2004

Presented at DEF CON 12 (2004), July 31, 2004, 5 p.m. (50 minutes)

Continuing the research done in previous years on advanced protocol manipulation and the high speed evaluation of large network characteristics, this year's Black Ops of TCP/IP goes into new territory with a deep analysis of the Domain Name System. A core element of the TCP/IP application suite, it is everywhere—and there is unexpected power contained within.

Presenters:

• Dan Kaminsky - Senior Security Consultant, Avaya Enterprise Security Practice
  Dan Kaminsky, also known as Effugas, is a Senior Security Consultant for Avaya's Enterprise Security Practice, where he works on large-scale security infrastructure. Dan's experience includes two years at Cisco Systems designing security infrastructure for large-scale network monitoring systems, and he is best known for his work on the ultra-fast port scanner scanrand, part of the "Paketto Keiretsu", a collection of tools that use new and unusual strategies for manipulating TCP/IP networks. He authored the Spoofing and Tunneling chapters for "Hack Proofing Your Network: Second Edition", and has delivered presentations at several major industry conferences, including Linuxworld, DefCon, and past Black Hat Briefings. Dan was responsible for the Dynamic Forwarding patch to OpenSSH, integrating the majority of VPN-style functionality into the widely deployed cryptographic toolkit. Finally, he founded the cross-disciplinary DoxPara Research in 1997, seeking to integrate psychological and technological theory to create more effective systems for non-ideal but very real environments in the field. Dan is based in Silicon Valley.

Links:

• https://infocon.org/cons/DEF CON/DEF CON 12/DEF CON 12 video/DEF CON 12 - Dan Kaminsky - Black Ops of TCP - ip 04 - Video.mp4
• https://www.youtube.com/watch?v=QCuRVV4LWYg

Similar Presentations:

• DEF CON 7 (1999) / Intro to TCP/IP exploits
• Black Hat USA 1997 / TCP/IP insecurities.
• Black Hat USA 2010 / CSI: TCP/IP