Upgrade to Pro — share decks privately, control downloads, hide ads and more …

SDN Final Report

Avatar for adr adr
June 21, 2019
Technology
0
460

SDN Final Report

Avatar for adr

adr

June 21, 2019
Tweet

More Decks by adr

See All by adr
Skrull Like A King: 從重兵看守的天眼防線殺出重圍
Avatar for adr aaaddress1
3
1.5k
Rebuild The Heaven's Gate: from 32 bit Hell back to Heaven Wonderland
Avatar for adr aaaddress1
0
1.2k
重建天堂之門:從 32bit 地獄一路打回天堂聖地
Avatar for adr aaaddress1
0
440
Reversing In Wonderland: Neural Network Based Malware Detection Techniques
Avatar for adr aaaddress1
2
730
CYBERSEC: 唉唷,你的簽章根本沒在驗啦。
Avatar for adr aaaddress1
1
4.1k
SITCON: Playing Win32 Like a K!NG ;)
Avatar for adr aaaddress1
2
1.2k
NTUST [2019]: Windows Reversing
Avatar for adr aaaddress1
0
1.1k
Duplicate Paths Attack: Get Elevated Privilege from Forged Identities
Avatar for adr aaaddress1
0
1.6k
Computer Security 資安實務: Windows Reversing [Dark Art]
Avatar for adr aaaddress1
8
1.8k

Other Decks in Technology

See All in Technology
[TechNight #90-1] 本当に使える? ZDMの 新機能を実践検証してみた
Avatar for oracle4engineer oracle4engineer
PRO
3
140
~宇宙最速~ 2025年AWS Summit レポート
Avatar for satodesu satodesu
1
1.1k
変化する開発、進化する体系時代に適応するソフトウェアエンジニアの知識と考え方(JaSST'25 Kansai)
Avatar for みずのり mizunori
0
120
Create a Rails8 responsive app with Gemini and RubyLLM
Avatar for Riccardo Carlesso palladius
0
140
Observability infrastructure behind the trillion-messages scale Kafka platform
Avatar for LINEヤフーTech (LY Corporation Tech) lycorptech_jp
PRO
0
130
IAMのマニアックな話 2025を執筆して、​ 見えてきたAWSアカウント管理の現在
Avatar for NRI Netcom nrinetcom
PRO
4
650
ひとり情シスなCTOがLLMと始めるオペレーション最適化 / CTO's LLM-Powered Ops
Avatar for Mitsuki Ogasahara yamitzky
0
370
25分で解説する「最小権限の原則」を実現するための AWS「ポリシー」大全
Avatar for opelab opelab
9
2.1k
Snowflake Summit 2025 データエンジニアリング関連新機能紹介 / Snowflake Summit 2025 What's New about Data Engineering
Avatar for t-hiroto tiltmax3
0
220
TechLION vol.41~MySQLユーザ会のほうから来ました / techlion41_mysql
Avatar for sakaik sakaik
0
140
Prox Industries株式会社 会社紹介資料
Avatar for Prox proxindustries
0
180
Clineを含めたAIエージェントを 大規模組織に導入し、投資対効果を考える / Introducing AI agents into your organization
Avatar for Masato Ishigaki / 石垣雅人 i35_267
4
1.3k

Featured

See All Featured
BBQ
Avatar for Matthew Crist matthewcrist
89
9.7k
Large-scale JavaScript Application Architecture
Avatar for Addy Osmani addyosmani
512
110k
GitHub's CSS Performance
Avatar for Jon Rohan jonrohan
1031
460k
The Art of Delivering Value - GDevCon NA Keynote
Avatar for David Neal reverentgeek
15
1.5k
Building a Modern Day 
E-commerce SEO Strategy
Avatar for Aleyda Solis aleyda
41
7.3k
Git: the NoSQL Database
Avatar for Brandon Keepers bkeepers
PRO
430
65k
Imperfection Machines: The Place of Print at Facebook
Avatar for Scott Boms scottboms
267
13k
Embracing the Ebb and Flow
Avatar for Simon Collison colly
86
4.7k
A Modern Web Designer's Workflow
Avatar for Chris Coyier chriscoyier
693
190k
Building an army of robots
Avatar for Kyle Neath kneath
306
45k
Fashionably flexible responsive web design (full day workshop)
Avatar for Andy Clarke malarkey
407
66k
Side Projects
Avatar for Sacha Greif sachag
455
42k

Transcript

  1. SDN-Based Intrusion Prevention System Software-Defined Networking and Function Virtualization

  2. >_SDN? Host A ... Switch A Service Flow Table Host

    B Host C Host N Switch B Service Flow Table

  3. >_SDN Host A ... Switch A Service Flow Table Host

    B Host C Host N Switch B Service Flow Table Controller Service Ctrl Srv

  4. >_SDN? Host A ... Switch A Service Flow Table Host

    B Host C Host N Switch B Service Flow Table External Network Controller Service Ctrl Srv

  5. >_Issue Host A ... Switch A Service Flow Table Host

    B Host C Host N Switch B Service Flow Table Controller Service Ctrl Srv Hacking Behavior Packets Packets DDoS, Telnet/SSH Brutforce, Ransomware, etc.

  6. >_Issue Host A ... Switch A Service Flow Table Host

    B Host C Host N Switch B Service Flow Table Controller Service Ctrl Srv Hacking Behavior Packets Packets DDoS, Telnet/SSH Brutforce, Ransomware, etc.

  7. >_Issue Host A ... Switch A Service Flow Table Host

    B Host C Host N Switch B Service Flow Table Controller Service Ctrl Srv Hacking Behavior Packets Packets DDoS, Telnet/SSH Brutforce, Ransomware, etc.

  8. >_Issue Host A ... Switch A Service Flow Table Manager

    Host C Emploee Switch B Service Flow Table Controller Service Ctrl Srv Hacking Behavior Packets Packets DDoS, Telnet/SSH Brutforce, Ransomware, etc. $>/bin/sh Bingo! Get Shell.

  9. >_IDS Host A Switch Service Flow Table Host B Host

    C IDS Srv Packets Packets Packets Intrusion Detection System

  10. >_ Host A Switch Service Flow Table Host B Host

    C IDS Srv Packets Packets Packets IDS Intrusion Detection System Tcpdump

  11. >_IDS Host A Switch Service Flow Table Host B Host

    C IDS Srv Intrusion Detection System Hacked Bruteforce credentials (Telnet/SSH/RDP/AD) SMTP (Email) Godmode

  12. >_IDS Host A Switch Service Flow Table Host B Host

    C IDS Srv Intrusion Detection System Hacked Bruteforce credentials (Telnet/SSH/RDP/AD) SMTP (Email) Godmode Marked As Pwned Devices

  13. >_SDN Host A Switch A Service Flow Table Host B

    Hacked Controller Service Ctrl Srv IDS Srv Scouting Updating Flow

  14. >_SDN Host A Switch A Service Flow Table Host B

    Hacked Controller Service Ctrl Srv IDS Srv Isolating Hacked Host

  15. >_SDN Host A Switch A Service Flow Table Host B

    Hacked Controller Service Ctrl Srv IDS Srv Isolating Hacked Host

  16. >_SDN? Host A ... Switch A Service Flow Table Host

    B Host C Host N Switch B Service Flow Table Controller Service Ctrl Srv IDS Srv IDS Srv

  17. Demo

  18. SDN-Based Intrusion Prevention System Thanks.