SecurityTubeBeta Watch ... Learn ... Contribute |
 |
 |
 |
 |
 |
  |
|
Attacking Backbone Technologies (Brucon 2009)
This talk titled "All Your Packets Are Belong to Us - Attacking Backbone Technologies" was given by Daniel Mende and Roger Klose at Brucon 2009. You can download the presentation slides here.
Abstract: The year 2008 has seen some severe attacks on infrastructure protocols (SNMP, DNS, BGP). We will continue down that road and discuss potential and real vulnerabilities in backbone technologies used in today's carrier space (e.g. MPLS, Carrier Ethernet, QinQ and the like). The talk includes a number of demos (like cracking BGP MD5 keys, redirecting MPLS traffic on a site level and some Carrier Ethernet stuff) all of which will be performed with a new tool kit made available at the con. It's about making the theoretical practical, once more!
Speaker Bio: Daniel Mende is a German security researcher specialized on network protocols and technologies. He's well known for his Layer2 extensions of he SPIKE and Sulley fuzzing frameworks, he has discussed new ways in botnet-building and presented on protocol security at many occasions including Troopers08, ShmooCon and Blackhat. Usually he releases a new tool when giving a talk.
Roger Klose is a seasoned pentester and longtime security consultant with vast experience in gouvernment agencies and large corporate environments. Over the years he focused on evaluating and reviewing all kinds of network protocols and applications. He loves to play with packets and use them for his own purposes. As the CIO of ERNW GmbH Roger also leads a team of secuity professionals and coordinates their missions. He is a frequent speaker at international security conferences including Troopers08, Day-Con08 and IT-Underground and will happily share his knowledge with the audience.
You can download a High resolution video here.
Abstract: The year 2008 has seen some severe attacks on infrastructure protocols (SNMP, DNS, BGP). We will continue down that road and discuss potential and real vulnerabilities in backbone technologies used in today's carrier space (e.g. MPLS, Carrier Ethernet, QinQ and the like). The talk includes a number of demos (like cracking BGP MD5 keys, redirecting MPLS traffic on a site level and some Carrier Ethernet stuff) all of which will be performed with a new tool kit made available at the con. It's about making the theoretical practical, once more!
Speaker Bio: Daniel Mende is a German security researcher specialized on network protocols and technologies. He's well known for his Layer2 extensions of he SPIKE and Sulley fuzzing frameworks, he has discussed new ways in botnet-building and presented on protocol security at many occasions including Troopers08, ShmooCon and Blackhat. Usually he releases a new tool when giving a talk.
Roger Klose is a seasoned pentester and longtime security consultant with vast experience in gouvernment agencies and large corporate environments. Over the years he focused on evaluating and reviewing all kinds of network protocols and applications. He loves to play with packets and use them for his own purposes. As the CIO of ERNW GmbH Roger also leads a team of secuity professionals and coordinates their missions. He is a frequent speaker at international security conferences including Troopers08, Day-Con08 and IT-Underground and will happily share his knowledge with the audience.
You can download a High resolution video here.
Related Videos from: Presentations from Brucon 2009
-Brucon-2009.jpg) | .jpg) | .jpg) | .jpg) | .jpg) | |
You are Viewing this Video Now! | |||||
3086 views | 2424 views | 2359 views | 2590 views | 2963 views |
Author
Vivek Ramachandran is a security evangelist and has been working in computer security related fields for the past 7 years. In 2007, Vivek spoke at world renowned conferences Defcon (WEP Cloaking Exposed) and Toorcon (The Caffe Latte Attack). The discovery of the Caffe Latte Attack was covered by CBS5 news, BBC online, Network World etc news agencies.In 2006, Vivek was announced as one of winners of the Microsoft Security Shootout contest held in India among 65,000 participants. He has also been a recipient of a Team Achievement at Cisco Systems for his work on 802.1x and Port Security modules on the Catalyst 6500 switches. Currently he spends all of his time maintaining Security- Freak.Net , SecurityTube.Net and is the co-founder of Axonize. Vivek, is a Bachelor in Electronics and Communications Engineering from the prestigious Indian Institute of Technology, Guwahati.You can contact him at vivek[at]securitytube.net
©2007 Freak Labs |