blog.cj2s.de
German ID card / nPA - blueblog - by Christian J. Dietrich
http://blog.cj2s.de/categories/5-German-ID-card-nPA
Skip to blog entries. Skip to archive page. Skip to left sidebar. Skip to right sidebar. German ID card / nPA. Blueblog - by Christian J. Dietrich. Tuesday, March 29. 2011. Kryptotag - Transport Layer Security with RSA-PSK. Last week, Kryptotag. Took place at HGI. Christian J. Dietrich. In German ID card / nPA. Friday, February 25. 2011. TLS-RSA-PSK Cipher Suites for OpenSSL. Channels ( Transport Layer Security, RFC 5246. In order to prevent man-in-the-middle attacks, the TLS channels are intertwined wit...
blog.cj2s.de
DNS as carrier for botnet C&C - blueblog - by Christian J. Dietrich
http://blog.cj2s.de/archives/27-DNS-as-carrier-for-botnet-CC.html
Skip to blog entries. Skip to archive page. Skip to left sidebar. Skip to right sidebar. DNS as carrier for botnet C&C. Blueblog - by Christian J. Dietrich. Monday, August 22. 2011. DNS as carrier for botnet C&C. Recently, Christian Rossow. Our paper dealing with DNS as carrier for botnet command and control channels. Got accepted at this year's EC2ND conference. I will be presenting the results at EC2ND which is going to take place in Gothenburg, Sweden, September 6-7 at Chalmers University.
tracedroid.few.vu.nl
Tracedroid - Dynamic Android app analysis
http://tracedroid.few.vu.nl/index.php
Dynamic Android app analysis (by VU Amsterdam). Laquo; About ». Laquo; Submit ». Laquo; Reports ». Welcome to our dynamic Android APK analysis tool called Tracedroid. But now: Try to Tracedroid your app! Tracedroid is maintained by Victor van der Veen. Please email us in case you have questions or recommendations. Update, May 19, 2015. Homepage of Victor van der Veen. Blog of Christian Rossow.
tracedroid.few.vu.nl
Tracedroid - Dynamic Android app analysis
http://tracedroid.few.vu.nl/reports.php
Dynamic Android app analysis (by VU Amsterdam). Laquo; About ». Laquo; Submit ». Laquo; Reports ». Search for MD5, SHA1 or SHA256 hash. Homepage of Victor van der Veen. Blog of Christian Rossow.
blog.cj2s.de
Preventing ARP flux on Linux - blueblog - by Christian J. Dietrich
http://blog.cj2s.de/archives/29-Preventing-ARP-flux-on-Linux.html
Skip to blog entries. Skip to archive page. Skip to left sidebar. Skip to right sidebar. Preventing ARP flux on Linux. Blueblog - by Christian J. Dietrich. Tuesday, March 13. 2012. Preventing ARP flux on Linux. We use arping to query for the hardware address of the IP address 172.16.0.1 and expect to get the MAC address 00:00:00:AA:AA:AA of interface A in return. Root@nugger]# arping -I eth0 172.16.0.1. ARPING 172.16.0.1 from 172.16.0.99 eth0. Root@nugger]# arping -I eth0 172.16.0.2. Arp ignore - INTEGER.
blog.cj2s.de
Performance Profiling Analysis using perf - blueblog - by Christian J. Dietrich
http://blog.cj2s.de/archives/33-Performance-Profiling-Analysis-using-perf.html
Skip to blog entries. Skip to archive page. Skip to left sidebar. Skip to right sidebar. Performance Profiling Analysis using perf. Blueblog - by Christian J. Dietrich. Monday, April 8. 2013. Performance Profiling Analysis using perf. Since most of the time we have to develop code that has to run fast. Perf record -g ./application [params and args for the application]. On a multicore system, the performance overhead induced by perf while monitoring a single-threaded application is hardly noticeable. ...
blog.cj2s.de
Publications - blueblog - by Christian J. Dietrich
http://blog.cj2s.de/pages/publications.html
Skip to blog entries. Skip to archive page. Skip to left sidebar. Skip to right sidebar. Blueblog - by Christian J. Dietrich. Blueblog - by Christian J. Dietrich : Publications. PROVEX: Detecting Botnets with Encrypted Command and Control Channels, Christian Rossow, Christian J. Dietrich. 10th Conference on Detection of Intrusions and Malware and Vulnerability Assessment, DIMVA 2013, Berlin, Germany. Exploiting Visual Appearance to Cluster and Detect Rogue Software. Christian J. Dietrich, Christian R...
blog.cj2s.de
Feederbot - a bot using DNS as carrier for its C&C - blueblog - by Christian J. Dietrich
http://blog.cj2s.de/archives/28-Feederbot-a-bot-using-DNS-as-carrier-for-its-CC.html
Skip to blog entries. Skip to archive page. Skip to left sidebar. Skip to right sidebar. Feederbot - a bot using DNS as carrier for its C&C. Blueblog - by Christian J. Dietrich. Friday, September 2. 2011. Feederbot - a bot using DNS as carrier for its C&C. During our work on covert communication of botnet command and control channels. We analyzed Feederbot in some detail and monitored it over the last year. In this post, I will provide some insight on the C&C. Not only Feederbot, but also Morto. The foll...
blog.cj2s.de
blueblog - by Christian J. Dietrich
http://blog.cj2s.de/archives/P2.html
Skip to blog entries. Skip to archive page. Skip to left sidebar. Skip to right sidebar. Blueblog - by Christian J. Dietrich. On malware, botnets and security by Christian J. Dietrich. Thursday, August 26. 2010. Can keyloggers reveal secret PIN of the new German ID card neuer Personalausweis (nPA)? The security flaw referenced above targets the online authentication function in combination with a specific card reader of class CAT-B according to BSI TR 03119. Christian J. Dietrich. In German ID card / nPA.
tracedroid.few.vu.nl
Tracedroid - Dynamic Android app analysis
http://tracedroid.few.vu.nl/submit.php
Dynamic Android app analysis (by VU Amsterdam). Laquo; About ». Laquo; Submit ». Laquo; Reports ». Upload an Android APK. Homepage of Victor van der Veen. Blog of Christian Rossow.
SOCIAL ENGAGEMENT