getting back at trudy
play

Getting back at Trudy Introduction SSH-Bruteforce SSH Botnet - PowerPoint PPT Presentation

Dec 14, 2023 •16 likes •546 views

Getting back at Trudy Tobias Fiebig Getting back at Trudy Introduction SSH-Bruteforce SSH Botnet Member Credential Collection Attacks using The Idea Connect Back Honeypots Ethical Implications Legal Implications The Software Tobias

  1. Getting back at Trudy Tobias Fiebig Getting back at Trudy Introduction SSH-Bruteforce SSH Botnet Member Credential Collection Attacks using The Idea Connect Back Honeypots Ethical Implications Legal Implications The Software Tobias Fiebig What it is... How it works... Experiments University of Amsterdam Single Hosts Whole Networks Results 01/08/2013 Single Hosts Whole Networks Something funny... Conclusion Tobias Fiebig Getting back at Trudy

  2. The Problem... Getting back at Trudy Tobias Fiebig Introduction SSH-Bruteforce Attacks The Idea • SSH-Bruteforcing. Ethical Implications Legal • Systems on the internet trying to authenticate to your Implications The Software system with all kinds of stupid usernames and passwords. What it is... How it works... Experiments Single Hosts Whole Networks Results Single Hosts Whole Networks Something funny... Conclusion Tobias Fiebig Getting back at Trudy

  3. Ok, hands up... Getting back at Trudy Tobias Fiebig Introduction SSH-Bruteforce Attacks The Idea • Ok? Who had the problem of being owned by an Ethical Implications SSH-Bruteforcer? Legal Implications The Software What it is... How it works... Experiments Single Hosts Whole Networks Results Single Hosts Whole Networks Something funny... Conclusion Tobias Fiebig Getting back at Trudy

  4. Ok, hands up... Getting back at Trudy Tobias Fiebig Introduction SSH-Bruteforce Attacks The Idea • Ok? Who had the problem of being owned by an Ethical Implications SSH-Bruteforcer? Legal Implications • Ok, lets ask differently... Who knows somebody who has a The Software What it is... friend whose father in law’s dog once had this problem... ? How it works... Experiments Single Hosts Whole Networks Results Single Hosts Whole Networks Something funny... Conclusion Tobias Fiebig Getting back at Trudy

  5. Honestly... hit me as well... Getting back at Trudy Tobias Fiebig Introduction SSH-Bruteforce Attacks The Idea Ethical Implications Legal Implications The Software What it is... How it works... Experiments Single Hosts Whole Networks Results Single Hosts Whole Networks Something funny... Conclusion Tobias Fiebig Getting back at Trudy

  6. Where do these systems come from? Getting back at Trudy Tobias Fiebig Introduction SSH-Bruteforce Attacks The Idea Ethical Implications Legal Implications The Software What it is... How it works... Experiments Single Hosts Whole Networks Results Single Hosts Whole Networks Something funny... Conclusion Tobias Fiebig Getting back at Trudy

  7. Where do these systems come from? Getting back at Trudy Tobias Fiebig Introduction SSH-Bruteforce Attacks • Probably not the attackers homebox... The Idea Ethical Implications Legal Implications The Software What it is... How it works... Experiments Single Hosts Whole Networks Results Single Hosts Whole Networks Something funny... Conclusion Tobias Fiebig Getting back at Trudy

  8. Where do these systems come from? Getting back at Trudy Tobias Fiebig Introduction SSH-Bruteforce Attacks • Probably not the attackers homebox... The Idea Ethical • But what kind of system could such an attacker have at Implications Legal Implications his disposal? The Software What it is... How it works... Experiments Single Hosts Whole Networks Results Single Hosts Whole Networks Something funny... Conclusion Tobias Fiebig Getting back at Trudy

  9. Where do these systems come from? Getting back at Trudy Tobias Fiebig Introduction SSH-Bruteforce Attacks • Probably not the attackers homebox... The Idea Ethical • But what kind of system could such an attacker have at Implications Legal Implications his disposal? The Software • Yes, systems they penetrated by Bruteforcing the SSH What it is... How it works... daemon... Experiments Single Hosts Whole Networks Results Single Hosts Whole Networks Something funny... Conclusion Tobias Fiebig Getting back at Trudy

  10. What do we know about these systems? Getting back at Trudy Tobias Fiebig Introduction SSH-Bruteforce Attacks The Idea Ethical Implications Legal Implications The Software What it is... How it works... Experiments Single Hosts Whole Networks Results Single Hosts Whole Networks Something funny... Conclusion Tobias Fiebig Getting back at Trudy

  11. What do we know about these systems? Getting back at Trudy Tobias Fiebig Introduction • You get detected if you change the password. SSH-Bruteforce Attacks The Idea Ethical Implications Legal Implications The Software What it is... How it works... Experiments Single Hosts Whole Networks Results Single Hosts Whole Networks Something funny... Conclusion Tobias Fiebig Getting back at Trudy

  12. What do we know about these systems? Getting back at Trudy Tobias Fiebig Introduction • You get detected if you change the password. SSH-Bruteforce Attacks The Idea • The password that is used, is probably in the attackers Ethical Implications Legal wordlist. Implications The Software What it is... How it works... Experiments Single Hosts Whole Networks Results Single Hosts Whole Networks Something funny... Conclusion Tobias Fiebig Getting back at Trudy

  13. What do we know about these systems? Getting back at Trudy Tobias Fiebig Introduction • You get detected if you change the password. SSH-Bruteforce Attacks The Idea • The password that is used, is probably in the attackers Ethical Implications Legal wordlist. Implications The Software • The attacker runs his SSH Bruteforcing Software on that What it is... How it works... machine. Experiments Single Hosts Whole Networks Results Single Hosts Whole Networks Something funny... Conclusion Tobias Fiebig Getting back at Trudy

  14. What do we know about these systems? Getting back at Trudy Tobias Fiebig Introduction • You get detected if you change the password. SSH-Bruteforce Attacks The Idea • The password that is used, is probably in the attackers Ethical Implications Legal wordlist. Implications The Software • The attacker runs his SSH Bruteforcing Software on that What it is... How it works... machine. Experiments • Wait... what? Single Hosts Whole Networks Results Single Hosts Whole Networks Something funny... Conclusion Tobias Fiebig Getting back at Trudy

  15. Research Question: Does this work? Getting back at Trudy Tobias Fiebig Introduction SSH-Bruteforce Attacks The Idea Ethical Implications Legal Implications The Software What it is... How it works... Experiments Single Hosts Whole Networks Results Single Hosts Whole Networks Something funny... Conclusion Tobias Fiebig Getting back at Trudy

  16. Ethical Implications Getting back at Trudy Tobias Fiebig Introduction SSH-Bruteforce Attacks • Subjects may be unaware of infection/participation in the The Idea Ethical research. Implications Legal Implications The Software What it is... How it works... Experiments Single Hosts Whole Networks Results Single Hosts Whole Networks Something funny... Conclusion Tobias Fiebig Getting back at Trudy

  17. Ethical Implications Getting back at Trudy Tobias Fiebig Introduction SSH-Bruteforce Attacks • Subjects may be unaware of infection/participation in the The Idea Ethical research. Implications Legal • Inform subjects. Has been done via appropriate channels. Implications The Software What it is... How it works... Experiments Single Hosts Whole Networks Results Single Hosts Whole Networks Something funny... Conclusion Tobias Fiebig Getting back at Trudy

  18. Ethical Implications Getting back at Trudy Tobias Fiebig Introduction SSH-Bruteforce Attacks • Subjects may be unaware of infection/participation in the The Idea Ethical research. Implications Legal • Inform subjects. Has been done via appropriate channels. Implications The Software • Gathered data is pretty sensitive. What it is... How it works... Experiments Single Hosts Whole Networks Results Single Hosts Whole Networks Something funny... Conclusion Tobias Fiebig Getting back at Trudy

  19. Ethical Implications Getting back at Trudy Tobias Fiebig Introduction SSH-Bruteforce Attacks • Subjects may be unaware of infection/participation in the The Idea Ethical research. Implications Legal • Inform subjects. Has been done via appropriate channels. Implications The Software • Gathered data is pretty sensitive. What it is... How it works... • Fully anonymize data before publication. Experiments Single Hosts Whole Networks Results Single Hosts Whole Networks Something funny... Conclusion Tobias Fiebig Getting back at Trudy

  20. Legal Implications Getting back at Trudy Tobias Fiebig Introduction SSH-Bruteforce Attacks The Idea • Different jurisdictions touched. Ethical Implications • In nearly all cases: Unauthorized logins prohibited by Legal Implications applicable law. The Software What it is... How it works... Experiments Single Hosts Whole Networks Results Single Hosts Whole Networks Something funny... Conclusion Tobias Fiebig Getting back at Trudy

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Study abroad: here we come Trudy Haneveer en Jolle Smulders Education Coordinators TSB Id

Study abroad: here we come Trudy Haneveer en Jolle Smulders Education Coordinators TSB Id

Study abroad: here we come Trudy Haneveer en Jolle Smulders Education Coordinators TSB Id rather look back at my life and say I cant believe I did that! Instead of saying I wish I did that Program Introduction 16:45

738 views • 31 slides
Trudy Baker, Greyt Exploitations, Greyhound Racing in the UK: an update on welfare

Trudy Baker, Greyt Exploitations, Greyhound Racing in the UK: an update on welfare

Trudy Baker, Greyt Exploitations, Greyhound Racing in the UK: an update on welfare 30 October 2018, Portcullis House, London All-Party Parliamentary Dog Advisory Welfare Group (APDAWG) 1 Make the Connection Calls for public

842 views • 15 slides
Differential Attention to Attributes in Utility-Theoretic Choice Models Trudy Ann Cameron J.R.

Differential Attention to Attributes in Utility-Theoretic Choice Models Trudy Ann Cameron J.R.

Seminar Outline Motivation Model Data Estimation Results Implications Conclusions Differential Attention to Attributes in Utility-Theoretic Choice Models Trudy Ann Cameron J.R. DeShazo University of Oregon School of Public Affairs,

1.82k views • 139 slides
GEOS Captures Tropical Cyclone-Like System Trudy Over the Mediterranean Sea Medicanes

GEOS Captures Tropical Cyclone-Like System Trudy Over the Mediterranean Sea Medicanes

National Aeronautics and Space Administration GEOS Captures Tropical Cyclone-Like System Trudy Over the Mediterranean Sea Medicanes are a type of short-lived but intense cyclone that form over the Mediterranean Sea. This case study

469 views • 4 slides
Driving a Successful Documentation Improvement Program LHIMA Presentation Presented by: Trudy

Driving a Successful Documentation Improvement Program LHIMA Presentation Presented by: Trudy

Driving a Successful Documentation Improvement Program LHIMA Presentation Presented by: Trudy Rioux Is a Program Needed? What is the baseline CMI (Case Mix Index) compared to other facilities within your peer group? For starters, review

863 views • 47 slides
Developing Visibility Internally and Externally Trudy Fahie President & CEO, Walmart Canada

Developing Visibility Internally and Externally Trudy Fahie President & CEO, Walmart Canada

Developing Visibility Internally and Externally Trudy Fahie President & CEO, Walmart Canada Bank May 21, 2010 "Many of us are taught to do our best and then let the world decide how to judge us. I think its better to do your

353 views • 12 slides
Annual General Meeting Charlton House, Cheltenham 9 th May 2017 Bill Nicholas Trudy Neil

Annual General Meeting Charlton House, Cheltenham 9 th May 2017 Bill Nicholas Trudy Neil

> ENGINEERING SUSTAINABLE VALUE > Annual General Meeting Charlton House, Cheltenham 9 th May 2017 Bill Nicholas Trudy Neil Kevin Jane Jay Clive Jamie Andy Whiteley Anderson Schoolenberg Daws Boyd Kingston Whalen Watson

167 views • 15 slides
Managers Performance Evaluation Presented by: Trudy Largent, JD. Vice Chancellor for Human

Managers Performance Evaluation Presented by: Trudy Largent, JD. Vice Chancellor for Human

Managers Performance Evaluation Presented by: Trudy Largent, JD. Vice Chancellor for Human Resources & Employee Relations June 12, 2013 Managers Performance Evaluation Introduction Who: All employees holding a manager/ administrative

550 views • 27 slides
Annual General Meeting Charlton House, Cheltenham 15 th May 2018 Clive Watson Trudy Schoolenberg

Annual General Meeting Charlton House, Cheltenham 15 th May 2018 Clive Watson Trudy Schoolenberg

Annual General Meeting Charlton House, Cheltenham 15 th May 2018 Clive Watson Trudy Schoolenberg Jane Kingston Peter France Bill Whiteley Jamie Pike Jay Whalen Nicholas Anderson Kevin Boyd Neil Daws Engineering Opportunities 0 Annual

290 views • 12 slides
Equipment Workshop Seyed Mohammadi, Director, Federal Cost Accounting, University Finance Trudy

Equipment Workshop Seyed Mohammadi, Director, Federal Cost Accounting, University Finance Trudy

Equipment Workshop Seyed Mohammadi, Director, Federal Cost Accounting, University Finance Trudy Riley, Assistant Vice Provost, Research Administration George Walueff, Associate Director, Procurement What is Equipment? Personal property

634 views • 18 slides
MCAH Title XIX Funding Trudy Raymundo, President April 5, 2018 Background Longstanding

MCAH Title XIX Funding Trudy Raymundo, President April 5, 2018 Background Longstanding

MCAH Title XIX Funding Trudy Raymundo, President April 5, 2018 Background Longstanding practice of CDPH approving LHD budgeted amounts Allocations exceeded CDPH appropriation MCAH programs asked to scale down budgets CDPH

243 views • 7 slides
DEPARTMENT OF HEALTH UPDATE Trudy McInnis Director Preventive Health, Renal Health&

DEPARTMENT OF HEALTH UPDATE Trudy McInnis Director Preventive Health, Renal Health&

DEPARTMENT OF HEALTH UPDATE Trudy McInnis Director Preventive Health, Renal Health& Infrastructure section Indigenous Health Division Department of Health National Tackling Indigenous Smoking (TIS) CEOs Workshop 8 May 2019 Hilton

729 views • 25 slides
MCAH Title XIX Funding Trudy Raymundo, President Michelle Gibbons, Executive Director March 9,

MCAH Title XIX Funding Trudy Raymundo, President Michelle Gibbons, Executive Director March 9,

MCAH Title XIX Funding Trudy Raymundo, President Michelle Gibbons, Executive Director March 9, 2018 Background Longstanding practice of CDPH approving LHD budgeted amounts Allocations exceeded CDPH appropriation MCAH programs asked

131 views • 12 slides
Effective Multi-Disciplinary Working for Elective Patients Sister Trudy Parfrey Pre-surgical

Effective Multi-Disciplinary Working for Elective Patients Sister Trudy Parfrey Pre-surgical

February 2018 Pre-Assessment & Pre-Surgical Preparation: Effective Multi-Disciplinary Working for Elective Patients Sister Trudy Parfrey Pre-surgical preparation manager QEQM Margate How do we achieve success? Collaborative Working

239 views • 19 slides
Peer Review Presented by Trudy Brown Ripin, MPH & Molly Gwisc, MPH Shoreline Health

Peer Review Presented by Trudy Brown Ripin, MPH & Molly Gwisc, MPH Shoreline Health

Pennsylvania Association of Community Health Centers Peer Review Presented by Trudy Brown Ripin, MPH & Molly Gwisc, MPH Shoreline Health Solutions Peer Review Overview Peer review is a systematic process for clinical providers to

734 views • 38 slides
DEPARTMENT OF HEALTH UPDATE Trudy McInnis Director Preventive Health and Renal Policy Section

DEPARTMENT OF HEALTH UPDATE Trudy McInnis Director Preventive Health and Renal Policy Section

DEPARTMENT OF HEALTH UPDATE Trudy McInnis Director Preventive Health and Renal Policy Section Indigenous Health Division Department of Health National Tackling Indigenous Smoking (TIS) CEOs Workshop 7 May 2020 Zoom A reminder of who we

311 views • 14 slides
Enriching the Lives of Children in the Carolinas 21 years of Credit Union Philanthropy Our

Enriching the Lives of Children in the Carolinas 21 years of Credit Union Philanthropy Our

Enriching the Lives of Children in the Carolinas 21 years of Credit Union Philanthropy Our History August 1993 Began as the North Carolina Credit Union Foundation, Inc. Spring 2001 SCCUL discusses beginning a Disaster Relief Fund

433 views • 24 slides
1 Who usually did the hunting in the family? Right, the men and older boys. Some of the tools

1 Who usually did the hunting in the family? Right, the men and older boys. Some of the tools

Presentation for school groups NATIVE AMERICANS: THE KUMEYAAY Do the general greeting and introduction first (See GENERAL INTRODUCTION FOR WALKS) Today we are going to talk about the people who lived in this area 150 - 200 years ago. Does

384 views • 3 slides
APARTMENTS WITH THE HIGHEST DEGREE OF CLASS Thoraipakkam - Pallavaram Radial Road Kovilambakkam

APARTMENTS WITH THE HIGHEST DEGREE OF CLASS Thoraipakkam - Pallavaram Radial Road Kovilambakkam

APARTMENTS WITH THE HIGHEST DEGREE OF CLASS Thoraipakkam - Pallavaram Radial Road Kovilambakkam (Near Velachery) ELEVATION (Entrance) ELEVATION (Evening View) ELEVATION (Aerial View) ELEVATION (Day View - Front) LOCATION MAP EXPERIENCE

368 views • 33 slides
H H PLAY HARD H HAVE FUN H H NationalAcademyofAthletics.com H H PLAY HARD H HAVE FUN H H THE

H H PLAY HARD H HAVE FUN H H NationalAcademyofAthletics.com H H PLAY HARD H HAVE FUN H H THE

H H PLAY HARD H HAVE FUN H H NationalAcademyofAthletics.com H H PLAY HARD H HAVE FUN H H THE PLAYBOOK H Company Overview H 3 Year plan - Growth Strategy H Problem H Risk Mitigation Milestones H Solution H Competitive Advantage H Market

758 views • 27 slides
Reha hab f b following t ng total h hip r p repl placem emen ent: AVOID COMPLICATIONS AND

Reha hab f b following t ng total h hip r p repl placem emen ent: AVOID COMPLICATIONS AND

Reha hab f b following t ng total h hip r p repl placem emen ent: AVOID COMPLICATIONS AND RETURN TO SPORT/ADL Ashley Campbell, PT, DPT, SCS, CSCS I have no personal financial conflicts to disclose. (And even if I did, Vegas has it all

376 views • 26 slides
Standing Advisory Committee Meeting October 10, 2019 Agenda Welcome and Executive Update

Standing Advisory Committee Meeting October 10, 2019 Agenda Welcome and Executive Update

Standing Advisory Committee Meeting October 10, 2019 Agenda Welcome and Executive Update 2021 Open Enrollment Deep Drive 2020 Health and Dental Plans 2021 Proposed Plan Certification Standards 2019 SHOP Advisory

1.02k views • 84 slides
Scrutinizing our hearts (I. Kant). A great opportunity, some new challenges Why is the IBC

Scrutinizing our hearts (I. Kant). A great opportunity, some new challenges Why is the IBC

Scrutinizing our hearts (I. Kant). A great opportunity, some new challenges Why is the IBC addressing this topic? The IBC included a reflection on the Principle of non- discrimination and non-stigmatization, as set forth in Article 11 of the

119 views • 7 slides
Determining the effects of landlocked alewives on anadromous alewife restoration David M. Post

Determining the effects of landlocked alewives on anadromous alewife restoration David M. Post

Determining the effects of landlocked alewives on anadromous alewife restoration David M. Post and Katherine Littrell, Yale University John Carlos Garza, NOAA Fisheries Stephen R. Gephard, Connecticut DEEP Eric P. Palkovacs and Kerry Reid, UC

781 views • 31 slides

More recommend