Explore a comprehensive analysis of network traffic detection techniques in this BSidesLV 2013 conference talk. Delve into the challenges of current detection methods, understand the inner workings of advanced traffic analysis, and examine various testing methodologies. Learn about Project Fire and its implications, covering topics such as SSL/TLS, HTTP, TCP, and static URL detection. Gain insights into the simplest methods of traffic analysis and their limitations. Conclude with a thorough understanding of cutting-edge approaches to network security and traffic monitoring.
Overview
Syllabus
Introduction
Problems with detection
How it works
Testing
Project Fire
Simplest Method
SSLTLS
HTTP
TCP
Static URL
Other limitations
Conclusion
Related Courses
-
Wireshark for Security: Detect Network Anomalies
-
Advanced Network Security and Analysis
-
The New Encrypted Protocol Stack: Understanding QUIC, HTTP/3, and Modern Network Traffic - Session 4760
-
The Network Is Going Dark - Why Decryption Matters for SecOps
-
Signature-Based Detection Using Network Timing - Malware Traffic Analysis
