Upgrade to PRO for Only $50/Year—Limited-Time Offer! 🔥

Denis Makrushin - DeanonymizaTOR

Avatar for DC7499 DC7499
May 22, 2015
Research
0
100

Denis Makrushin - DeanonymizaTOR

DEFCON Moscow 8

Avatar for DC7499

DC7499

May 22, 2015
Tweet

More Decks by DC7499

See All by DC7499
Sergey Sobko - Hackashop: Hackathon + Pentest + Workshop [RU]
Avatar for DC7499 defcon
0
550
Dmitry Sklyarov - Intel ME: Security keys Genealogy, Obfuscation and other Magic
Avatar for DC7499 defcon
0
280
Anton Lopanitsyn - Initial reconnaissance of web applications.
Avatar for DC7499 defcon
0
300
Dmitry Volkov - Private messengers: without pain??
Avatar for DC7499 defcon
1
240
Andrey Skuratov and Sergey Migalin - DNS tunneling in 2018. What is that, and what to do with it?
Avatar for DC7499 defcon
2
220
Sergey Belov - Another side of Bug Bounty programs
Avatar for DC7499 defcon
0
310
Dmitry Sklyarov - Intel ME: Flash file system explained
Avatar for DC7499 defcon
0
540
Maxim Goryachiy & Mark Ermolov - Inside Intel Management Engine
Avatar for DC7499 defcon
0
630
Sergey Golovanov - Indecent Response 2018
Avatar for DC7499 defcon
0
550

Other Decks in Research

See All in Research
競合や要望に流されない─B2B SaaSでミニマム要件を決めるリアルな取り組み / Don't be swayed by competitors or requests - A real effort to determine minimum requirements for B2B SaaS
Avatar for 株式会社カミナシ kaminashi
0
130
データサイエンティストをめぐる環境の違い2025年版〈一般ビジネスパーソン調査の国際比較〉
Avatar for The Japan DataScientist Society datascientistsociety
PRO
0
240
GPUを利用したStein Particle Filterによる点群6自由度モンテカルロSLAM
Avatar for TakumiNakao takuminakao
0
620
CVPR2025論文紹介:Unboxed
Avatar for 村川卓也 murakawatakuya
0
220
製造業主導型経済からサービス経済化における中間層形成メカニズムのパラダイムシフト
Avatar for Masatake Yamoto yamotty
0
250
能動適応的実験計画
Avatar for MasaKat0 masakat0
2
1.1k
若手研究者が国際会議(例えばIROS)でワークショップを企画するメリットと成功法!
Avatar for Tadahiro Taniguchi tanichu
0
120
Learning to (Learn at Test Time): RNNs with Expressive Hidden States
Avatar for Hiroto Kurita kurita
1
290
LLM-jp-3 and beyond: Training Large Language Models
Avatar for Yusuke Oda odashi
1
690
VectorLLM: Human-like Extraction of Structured Building Contours via Multimodal LLMs
Avatar for SatAI.challenge satai
4
490
Language Models Are Implicitly Continuous
Avatar for Sho Yokoi eumesy
PRO
0
350
AWSで実現した大規模日本語VLM学習用データセット "MOMIJI" 構築パイプライン/buiding-momiji
Avatar for 開発室Graph studio_graph
2
990

Featured

See All Featured
Designing for humans not robots
Avatar for Tammie Lister tammielis
254
26k
How to Ace a Technical Interview
Avatar for Jacob Kaplan-Moss jacobian
280
24k
XXLCSS - How to scale CSS and keep your sanity
Avatar for Zaharenia Atzitzikaki sugarenia
249
1.3M
Agile that works and the tools we love
Avatar for Rasmus Luckow-Nielsen rasmusluckow
331
21k
Helping Users Find Their Own Way: Creating Modern Search Experiences
Avatar for Dan Newman danielanewman
31
3k
The Language of Interfaces
Avatar for Des Traynor destraynor
162
25k
Balancing Empowerment & Direction
Avatar for Lara Hogan lara
5
800
How Fast Is Fast Enough? [PerfNow 2025]
Avatar for Tammy Everts tammyeverts
3
390
Automating Front-end Workflow
Avatar for Addy Osmani addyosmani
1371
200k
Intergalactic Javascript Robots from Outer Space
Avatar for Vicent Martí tanoku
273
27k
How STYLIGHT went responsive
Avatar for nonsquared nonsquared
100
6k
Creating an realtime collaboration tool: Agile Flush - .NET Oxford
Avatar for Marc Duiker marcduiker
35
2.3k

Transcript

  1. Немного лирики…

  2. DeanonymizaTOR Denis Makrushin (@difezza) Maria Garnaeva Global Research and Analysis

    Team

  3. «Я знаю что ты делал прошлым летом»

  4. … но как?!

  5. Эксплойты, фингерпринтинг… ну-ну- да.

  6. Flash, html5, entry-node detection… ну- ну-да.

  7. Но КАК … … они нашли мой мегаприватный-0дей-форум?! … они

    нашли мою квартиру?!

  8. ПАССИВНАЯ СИСТЕМА СБОРА ДАННЫХ … ИЛИ КАК ОНИ НАШЛИ МОЙ

    МЕГАПРИВАТНЫЙ-0ДЕЙ-ФОРУМ?!

  9. >> ExitPolicy accept *:*

  10. >>tshark –i 1 –w dump.pcap

  11. Психологический портрет tor- пользователя

  12. Психологический портрет. Часть 2.

  13. 13

  14. 14

  15. АКТИВНАЯ СИСТЕМА СБОРА ДАННЫХ … ИЛИ КТО СТУЧИТСЯ В ДВЕРЬ

    КО МНЕ?!

  16. Traffic injection… ну-ну-да.

  17. Скажи мне, кто ты

  18. Такие разные печеньки

  19. None

  20. ТЕМ ВРЕМЕНЕМ В TBB

  21. А ДАВАЙТЕ ТЕКСТ ПОМЕРЯЕМ

  22. Measuretext

  23. Proof-of-concept: готовим пациента

  24. Proof-of-concept: делаем укольчик

  25. СПОЙЛЕР: НЕ ТОЛЬКО MEASURETEXT ТУТ БЫЛ PHDAYS V

  26. СПОЙЛЕР: АНАЛИЗИРУЕМ РЕЗУЛЬТАТ ТУТ БЫЛ PHDAYS V

  27. XSS – головная боль onion-ресурсов

  28. Вектор атаки

  29. None
  30. None
  31. None

  32. Wazzzzup?! twitter.com/difezza [email protected]