Network traffic encryption has become common place for the internet and adversaries. Adversaries are hiding within the SSL/TLS profile of networks. This talk will address some of the problems with current detection methods along with techniques on how to enhance SSL/TLS encrypted traffic telemetry, including the JA3 fingerprint

Details

time: 14:00
speakers:

Other sessions:

Monitoring infected IoT devices in the Netherlands


Let’s Update the Way we Do Updates


Behind the Scenes of Recent Botnet Takedown Operations


Malpedia – Code Cartographer’s Diary


Investigating Financial Cybercrime