Dissecting various real-world DGA variants

  • Wednesday, 09 Aug 2017 10:30AM EDT (09 Aug 2017 14:30 UTC)
  • Speakers: John Pescatore, Sean Ennis

Attackers often turn to DGAs to generate large numbers of random Internet addresses to link to C&C servers. DGAs are an effective covert communication method. They are relatively easy to implement, difficult to block, almost impossible to predict in advance, and can be quickly modified if the previously used algorithm becomes known.

Join Cybereason's Sean Ennis, Senior Systems Engineer as he dissects specific DGA methods currently being used by malware and exploit kits. Also, learn to identify DGA communication patterns and see how behavioral DGA detection actually works in a corporate scenario.