Techniky vyhýbania sa sieťovej detekcii
Autoři | |
---|---|
Rok publikování | 2013 |
Druh | Článek ve sborníku |
Konference | Sborník příspěvků 43. konference EurOpen.CZ |
Fakulta / Pracoviště MU | |
Citace | |
Obor | Informatika |
Klíčová slova | Intrusion detection system; detection avoidance; IDS |
Popis | Systems for network attacks detection usually create model of network traffic to identify "malicious data". Protocol complexity, insufficient specification compliance and wide diversity of protocol implementations make IDS design a challenging task. The presentation comes out of hands-on experience gained during development of IDS system for detection of MS WINDOWS network protocol (SMB, DCE/RPC) vulnerabilities. The presentation gives examples of attacks, discusses various methods for detection and provides examples of techniques and tools for network detection avoidance in MS WINDOWS network protocols. |
Související projekty: |