Upgrade to Pro — share decks privately, control downloads, hide ads and more …

SDN Final Report

229b1596ce57cd0935a2bacd410d87a0?s=47 adr
June 21, 2019
Technology
0
370

SDN Final Report

229b1596ce57cd0935a2bacd410d87a0?s=128

adr

June 21, 2019
Tweet

More Decks by adr

See All by adr
Skrull Like A King: 從重兵看守的天眼防線殺出重圍
229b1596ce57cd0935a2bacd410d87a0?s=48 aaaddress1
3
940
Rebuild The Heaven's Gate: from 32 bit Hell back to Heaven Wonderland
229b1596ce57cd0935a2bacd410d87a0?s=48 aaaddress1
0
270
重建天堂之門:從 32bit 地獄一路打回天堂聖地
229b1596ce57cd0935a2bacd410d87a0?s=48 aaaddress1
0
110
Reversing In Wonderland: Neural Network Based Malware Detection Techniques
229b1596ce57cd0935a2bacd410d87a0?s=48 aaaddress1
2
570
CYBERSEC: 唉唷,你的簽章根本沒在驗啦。
229b1596ce57cd0935a2bacd410d87a0?s=48 aaaddress1
1
3.1k
SITCON: Playing Win32 Like a K!NG ;)
229b1596ce57cd0935a2bacd410d87a0?s=48 aaaddress1
2
840
NTUST [2019]: Windows Reversing
229b1596ce57cd0935a2bacd410d87a0?s=48 aaaddress1
0
850
Duplicate Paths Attack: Get Elevated Privilege from Forged Identities
229b1596ce57cd0935a2bacd410d87a0?s=48 aaaddress1
0
1.1k
Computer Security 資安實務: Windows Reversing [Dark Art]
229b1596ce57cd0935a2bacd410d87a0?s=48 aaaddress1
8
1.4k

Other Decks in Technology

See All in Technology
220510 プロセスマイニングを学ぶ PLAY与田さん
50bc42471d197d0dbef7171f2ef85bb6?s=48 comucal
PRO
0
740
エンジニアと気軽に繋がれるプラットフォーム「ハッカー飯」で行った セキュリティ・モニタリングに関する取り組みについて
8989dfee7c4a1360817fccb657d695bc?s=48 nobuakikikuchi
0
350
JAWS-UG 朝会 #33 登壇資料
08dd0b93e011904f40d60d5a1b54c671?s=48 takakuni
0
380
Nutanix_Meetup_20220511
0fca98ba59a23fc0a4a2a53701a2bae1?s=48 keigotomomatsu
0
150
インフラエンジニアBooks 30分でわかる「Dockerコンテナ開発・環境構築の基本」
7bcf6f29a0b9a348fe422a31a4f44752?s=48 cyberblack28
11
6.9k
20220510_簡単にできるコスト異常検出(Cost Anomaly Detection) /jaws-ug-asa-cost-anomaly-detection-20220510
97b3cca999b52cb5296675ac0a5c12cd?s=48 emiki
2
310
YAMLを書くだけで構築できる分散ストレージ
842515eaf8fbb2dfcc75197e7797dc15?s=48 sat
PRO
0
170
Unity Package Managerで自作パッケージを配布する方法
3dfed36dc1543f0007b5fd46fcb41a47?s=48 yunoda
0
150
ISUCON で使えるツールを作った
Cb17938137021ead2656d0fe58b7c7b1?s=48 shotakitazawa
0
350
組織でPower Virtual Agentsを導入するために知っておきたいこと
C0c0e8e4d7f83912cb1b1a0699df82a5?s=48 miyakemito
0
1.6k
プロダクトグロースと技術のベースアップを両立させるRettyのアプリ開発スタイル / Achieve Product Growth and Tech Update
1a74617b91d2757b839b9cf3614648ce?s=48 imaizume
1
290
Data-Driven Healthcare - Techplay
Bc9f06dc792f2ab663c7bf10326e649e?s=48 kotaroito
0
110

Featured

See All Featured
Web Components: a chance to create the future
E190023b66e2b8aa73a842b106920c93?s=48 zenorocha
303
40k
It's Worth the Effort
Ba530e786553390f3fb271848485681c?s=48 3n
172
25k
Done Done
282d599b414022eba5096510f675b6e2?s=48 chrislema
174
14k
Fantastic passwords and where to find them - at NoRuKo
8ec1383b240b5ba15ffb9743fceb3c0e?s=48 philnash
25
1.5k
JavaScript: Past, Present, and Future - NDC Porto 2020
3ab1249be442027903e1180025340b3f?s=48 reverentgeek
37
3.2k
The Power of CSS Pseudo Elements
5b6a2bd86ef643786a381a212e0ef2f1?s=48 geoffreycrofte
46
3.9k
Rebuilding a faster, lazier Slack
C0b42577cfc2b321be3474618107e933?s=48 samanthasiow
62
7.2k
Building Applications with DynamoDB
39488f9d172ab92fd352f2cd7b73258d?s=48 mza
83
4.6k
How GitHub (no longer) Works
78b475797a14c84799063c7cd073962f?s=48 holman
296
140k
Easily Structure & Communicate Ideas using Wireframe
0c6fd6a08d0f898159cda7cafcacf07f?s=48 afnizarnur
181
15k
Code Review Best Practice
3d6ace9554821d552146413bcdf874f6?s=48 trishagee
41
6.7k
JazzCon 2018 Closing Keynote - Leadership for the Reluctant Leader
3ab1249be442027903e1180025340b3f?s=48 reverentgeek
172
8.3k

Transcript

  1. SDN-Based Intrusion Prevention System Software-Defined Networking and Function Virtualization

  2. >_SDN? Host A ... Switch A Service Flow Table Host

    B Host C Host N Switch B Service Flow Table

  3. >_SDN Host A ... Switch A Service Flow Table Host

    B Host C Host N Switch B Service Flow Table Controller Service Ctrl Srv

  4. >_SDN? Host A ... Switch A Service Flow Table Host

    B Host C Host N Switch B Service Flow Table External Network Controller Service Ctrl Srv

  5. >_Issue Host A ... Switch A Service Flow Table Host

    B Host C Host N Switch B Service Flow Table Controller Service Ctrl Srv Hacking Behavior Packets Packets DDoS, Telnet/SSH Brutforce, Ransomware, etc.

  6. >_Issue Host A ... Switch A Service Flow Table Host

    B Host C Host N Switch B Service Flow Table Controller Service Ctrl Srv Hacking Behavior Packets Packets DDoS, Telnet/SSH Brutforce, Ransomware, etc.

  7. >_Issue Host A ... Switch A Service Flow Table Host

    B Host C Host N Switch B Service Flow Table Controller Service Ctrl Srv Hacking Behavior Packets Packets DDoS, Telnet/SSH Brutforce, Ransomware, etc.

  8. >_Issue Host A ... Switch A Service Flow Table Manager

    Host C Emploee Switch B Service Flow Table Controller Service Ctrl Srv Hacking Behavior Packets Packets DDoS, Telnet/SSH Brutforce, Ransomware, etc. $>/bin/sh Bingo! Get Shell.

  9. >_IDS Host A Switch Service Flow Table Host B Host

    C IDS Srv Packets Packets Packets Intrusion Detection System

  10. >_ Host A Switch Service Flow Table Host B Host

    C IDS Srv Packets Packets Packets IDS Intrusion Detection System Tcpdump

  11. >_IDS Host A Switch Service Flow Table Host B Host

    C IDS Srv Intrusion Detection System Hacked Bruteforce credentials (Telnet/SSH/RDP/AD) SMTP (Email) Godmode

  12. >_IDS Host A Switch Service Flow Table Host B Host

    C IDS Srv Intrusion Detection System Hacked Bruteforce credentials (Telnet/SSH/RDP/AD) SMTP (Email) Godmode Marked As Pwned Devices

  13. >_SDN Host A Switch A Service Flow Table Host B

    Hacked Controller Service Ctrl Srv IDS Srv Scouting Updating Flow

  14. >_SDN Host A Switch A Service Flow Table Host B

    Hacked Controller Service Ctrl Srv IDS Srv Isolating Hacked Host

  15. >_SDN Host A Switch A Service Flow Table Host B

    Hacked Controller Service Ctrl Srv IDS Srv Isolating Hacked Host

  16. >_SDN? Host A ... Switch A Service Flow Table Host

    B Host C Host N Switch B Service Flow Table Controller Service Ctrl Srv IDS Srv IDS Srv

  17. Demo

  18. SDN-Based Intrusion Prevention System Thanks.