YoVDO

Analyzing DNS Traffic for Malicious Activity Using Open Source Logging Tools

Offered By: YouTube

Tags

Conference Talks Courses Cybersecurity Courses DNS Courses Data Exfiltration Courses

Course Description

Overview

Save Big on Coursera Plus. 7,000+ courses at $160 off. Limited Time Only!
Explore DNS traffic analysis for malicious activity using open-source logging tools in this 33-minute conference talk from Nolacon 2016. Learn about the basics of DNS monitoring, the Tabasco story, and simple solutions to common problems. Discover various tools, including expensive options and their support levels, as well as common denominators in log processing, indexing, formatting, and shipping. Gain insights into Gray Log, Elastic Search, and DNS amplification. Examine dashboards for data visualization and understand techniques for detecting data exfiltration through DNS traffic.

Syllabus

Introduction
Agenda
The Basics
Tabasco Story
Simple Solution
The Problem
Other Tools
Expensive Tools
Support Levels
Common denominators
Log processing
Log indexing
Log formatting
Log shipping
Log input
Gray Log Sidegar
What is Gray Log
Gray Log 2 Archive
Elastic Search
DNS Amplification
Dashboards
Data Exfiltration


Related Courses

Implementing DNS in Microsoft Windows Server
Microsoft via edX Networking for Web Developers
Udacity Microsoft Windows Server 2012 Fundamentals: DNS
Microsoft via edX Windows Server 2016: Basic Networking
Microsoft via edX The Bits and Bytes of Computer Networking
Google via Coursera