DNS and Advanced Persistent Threats (APT)
DNS and Advanced Persistent Threats (APT) The dual role of DNS on APT attacks The APT hype got some boost in February following the release of the APT1 report by security company Mandiant. Based on...
View ArticleBlocking DNS Covert Channel Attacks: Encoding Algorithms
Blocking DNS Covert Channel Attacks: Encoding Algorithms Part 2 of 5 I previously introduced the idea of detecting and/or blocking the covert exfiltration of data via the DNS query protocol. That...
View ArticleDNS Covert Channel Attacks: Detecting Anomalies
DNS Covert Channel Attacks: Detecting Anomalies Part 3 of 5 In part 1 of this series, I introduced the idea of detecting and blocking data being exfiltrated or infiltrated using the DNS protocol. Part...
View ArticleDNS Covert Channel Attacks: Anomaly Occurrence
DNS Covert Channel Attacks: Anomaly Occurrence Part 4 of 5 In the prior articles of this series (1, 2, 3), I introduced and expanded on the idea of detection of data being exfiltrated or infiltrated...
View ArticleDNS Covert Channels: Solution Design and Implementation
DNS Covert Channels: Solution Design and Implementation Part 5 of 5 We are finally nearing the end of our series on “DNS Covert Channel Attacks”. So far, we have looked at the DNS data exfiltration...
View Article
More Pages to Explore .....