Crimeware Chaos - Empirical Analysis of HTTP-Based Botnet C&C Panels
Offered By: Security BSides San Francisco via YouTube
Course Description
Overview
Explore an empirical analysis of HTTP-based botnet Command and Control (C&C) panels in this 35-minute conference talk from BSidesSF 2018. Delve into the world of crimeware chaos as Aditya K Sood presents findings from examining thousands of real-world C&C web URLs used for deploying various types of malware. Gain insights into the characteristics, design, and technologies chosen by crimeware authors for HTTP-based C&C panels. Learn about data movement, botnet growth, protocols, and basic C&C architecture. Examine techniques for static and dynamic analysis, and understand the role of security intelligence in combating cybercrime. Discover key findings related to top-level domains, entropy, and the ongoing arms race between cybercriminals and security professionals.
Syllabus
Introduction
Disclaimer
Agenda
Data Movement Chaos
Botnet Growth
Protocols
Basic CNC Architecture
Admin Panel
CNC Panels
Techniques
Static Analysis
Dynamic Analysis
Google Docs
Security Intelligence
Qualitative Analysis
Findings
TopLevel Domains
Entropy
Arms Race
Taught by
Security BSides San Francisco
Related Courses
Computer SecurityStanford University via Coursera Cryptography II
Stanford University via Coursera Malicious Software and its Underground Economy: Two Sides to Every Story
University of London International Programmes via Coursera Building an Information Risk Management Toolkit
University of Washington via Coursera Introduction to Cybersecurity
National Cybersecurity Institute at Excelsior College via Canvas Network