Catching DNS Tunnels with AI - A Talk About Artificial Intelligence, Geometry and Malicious Network Traffic
Catching DNS Tunnels with AI - A Talk About Artificial Intelligence, Geometry and Malicious Network Traffic
Presented at DEF CON 17 (2009),
July 31, 2009, 10 a.m.
(50 minutes).
The in-depth explanation, demonstration and release of a working adaptive solution for data mining DNS tunnels from network traffic.
Presenters:
jhind
- Security Researcher
jhind has shared a passion for security inside government, academia and industry for well over a decade. He has countless hours of sleep-deprived research and teaching in reverse engineering, cryptography, exploitation and general Internet deviancy. Completely frustrated with IDS in its current state, jhind's latest research attempts to advance the conversation of competent intrusion detection.