[Emerging-Sigs] Encrypted Analysis Talks

Kevin Ross kevross33 at googlemail.com
Sun Jan 5 22:33:10 HST 2020


Hi,

I thought for those looking at more metadata based detection of malicious
encrypted traffic in intrusion detection these are good talks on the
subject. It is a complex issue but I found these very useful in laying out
new ideas and expanding ideas had already had.

https://www.youtube.com/watch?v=APHlvFaUEKE: Network Forensic Analysis in
an Encrypted World (From 2017 but lots of techniques).

https://www.youtube.com/watch?v=HPvIGP2mgbI&list=PLEJJRQNh3v_PF6cecq0ES2
Encrypted Things - Network Detection and Response in an Encrypted World

https://www.youtube.com/watch?v=HrP6Ep3xgQM Using JA3. Asking for a friend?
https://www.youtube.com/watch?v=-WD9BWlENwc Finding traffic anomalies using
SSL certificates

Hope this helps people.

Kind Regards,
Kevin Ross
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.emergingthreats.net/pipermail/emerging-sigs/attachments/20200106/5c213244/attachment.html>


More information about the Emerging-sigs mailing list