Explore a conference talk that delves into the identification of scan and attack infrastructure behind amplification DDoS attacks. Learn about the authors' approach to understanding these cyber threats, including scanning techniques, honeypot usage, and community-based detection methods. Discover the challenges faced in tracking attack sources and the innovative solutions proposed, such as trilateration and Time to Live analysis. Gain insights into the experiments conducted and their implications for cybersecurity professionals and researchers working to combat amplification DDoS attacks.
Identifying the Scan and Attack Infrastructure Behind Amplification DDoS Attacks
Association for Computing Machinery (ACM) via YouTube
Overview
Syllabus
Introduction
What is amplification DDoS
Previous approaches
Scanning
Honeypot
Community Torics
Results
Trilateration
Time to Live
Problems
Experiments
Conclusion
Taught by
ACM CCS
