Upgrade to Pro — share decks privately, control downloads, hide ads and more …

Denis Makrushin - DeanonymizaTOR

Sponsored · Your Podcast. Everywhere. Effortlessly. Share. Educate. Inspire. Entertain. You do you. We'll handle the rest.
Avatar for DC7499 DC7499
May 22, 2015
Research
0
100

Denis Makrushin - DeanonymizaTOR

DEFCON Moscow 8

Avatar for DC7499

DC7499

May 22, 2015
Tweet

More Decks by DC7499

See All by DC7499
Sergey Sobko - Hackashop: Hackathon + Pentest + Workshop [RU]
Avatar for DC7499 defcon
0
560
Dmitry Sklyarov - Intel ME: Security keys Genealogy, Obfuscation and other Magic
Avatar for DC7499 defcon
0
290
Anton Lopanitsyn - Initial reconnaissance of web applications.
Avatar for DC7499 defcon
0
310
Dmitry Volkov - Private messengers: without pain??
Avatar for DC7499 defcon
1
240
Andrey Skuratov and Sergey Migalin - DNS tunneling in 2018. What is that, and what to do with it?
Avatar for DC7499 defcon
2
220
Sergey Belov - Another side of Bug Bounty programs
Avatar for DC7499 defcon
0
320
Dmitry Sklyarov - Intel ME: Flash file system explained
Avatar for DC7499 defcon
0
550
Maxim Goryachiy & Mark Ermolov - Inside Intel Management Engine
Avatar for DC7499 defcon
0
650
Sergey Golovanov - Indecent Response 2018
Avatar for DC7499 defcon
0
560

Other Decks in Research

See All in Research
大規模言語モデルにおけるData-Centric AIと合成データの活用 / Data-Centric AI and Synthetic Data in Large Language Models
Avatar for tsurubee tsurubee
1
490
AIスパコン「さくらONE」の
オブザーバビリティ / Observability for AI Supercomputer SAKURAONE
Avatar for Yuuki Tsubouchi (yuuk1) yuukit
2
1.1k
生成的情報検索時代におけるAI利用と認知バイアス
Avatar for Y. Yamamoto trycycle
PRO
0
250
スキマバイトサービスにおける現場起点でのデザインアプローチ
Avatar for 眞行寺由郎 yoshioshingyouji
0
280
競合や要望に流されない─B2B SaaSでミニマム要件を決めるリアルな取り組み / Don't be swayed by competitors or requests - A real effort to determine minimum requirements for B2B SaaS
Avatar for 株式会社カミナシ kaminashi
0
670
Remote sensing × Multi-modal meta survey
Avatar for SatAI.challenge satai
4
700
Earth AI: Unlocking Geospatial Insights with Foundation Models and Cross-Modal Reasoning
Avatar for SatAI.challenge satai
3
470
説明可能な機械学習と数理最適化
Avatar for kelicht kelicht
2
910
POI: Proof of Identity
Avatar for MATSUMOTO Katsuyoshi katsyoshi
0
130
Combining Deep Learning and Street View Imagery to Map Smallholder Crop Types
Avatar for SatAI.challenge satai
3
560
AWSの耐久性のあるRedis互換KVSのMemoryDBについての論文を読んでみた
Avatar for bootjp / ぶーと bootjp
1
450
教師あり学習と強化学習で作る 最強の数学特化LLM
Avatar for Hiroshi Y (RabotniKuma) analokmaus
2
880

Featured

See All Featured
AI Search: Implications for SEO and How to Move Forward - #ShenzhenSEOConference
Avatar for Aleyda Solis aleyda
1
1.1k
The Illustrated Children's Guide to Kubernetes
Avatar for Chris Short chrisshort
51
51k
Connecting the Dots Between Site Speed, User Experience & Your Business [WebExpo 2025]
Avatar for Tammy Everts tammyeverts
11
820
The AI Revolution Will Not Be Monopolized: How open-source beats economies of scale, even for LLMs
Avatar for Ines Montani inesmontani
PRO
3
3k
Deep Space Network (abreviated)
Avatar for Tony Rice tonyrice
0
44
I Don’t Have Time: Getting Over the Fear to Launch Your Podcast
Avatar for Joe Casabona jcasabona
34
2.6k
Tips & Tricks on How to Get Your First Job In Tech
Avatar for Honza Javorek honzajavorek
0
430
GraphQLとの向き合い方2022年版
Avatar for Yosuke Kurami quramy
50
14k
Primal Persuasion: How to Engage the Brain for Learning That Lasts
Avatar for Mike Taylor tmiket
0
240
Paper Plane
Avatar for Katie Cordina Lindsey katiecoart
PRO
0
46k
Java REST API Framework Comparison - PWX 2021
Avatar for Matt Raible mraible
34
9.1k
Put a Button on it: Removing Barriers to Going Fast.
Avatar for kastner kastner
60
4.2k

Transcript

  1. Немного лирики…

  2. DeanonymizaTOR Denis Makrushin (@difezza) Maria Garnaeva Global Research and Analysis

    Team

  3. «Я знаю что ты делал прошлым летом»

  4. … но как?!

  5. Эксплойты, фингерпринтинг… ну-ну- да.

  6. Flash, html5, entry-node detection… ну- ну-да.

  7. Но КАК … … они нашли мой мегаприватный-0дей-форум?! … они

    нашли мою квартиру?!

  8. ПАССИВНАЯ СИСТЕМА СБОРА ДАННЫХ … ИЛИ КАК ОНИ НАШЛИ МОЙ

    МЕГАПРИВАТНЫЙ-0ДЕЙ-ФОРУМ?!

  9. >> ExitPolicy accept *:*

  10. >>tshark –i 1 –w dump.pcap

  11. Психологический портрет tor- пользователя

  12. Психологический портрет. Часть 2.

  13. 13

  14. 14

  15. АКТИВНАЯ СИСТЕМА СБОРА ДАННЫХ … ИЛИ КТО СТУЧИТСЯ В ДВЕРЬ

    КО МНЕ?!

  16. Traffic injection… ну-ну-да.

  17. Скажи мне, кто ты

  18. Такие разные печеньки

  19. None

  20. ТЕМ ВРЕМЕНЕМ В TBB

  21. А ДАВАЙТЕ ТЕКСТ ПОМЕРЯЕМ

  22. Measuretext

  23. Proof-of-concept: готовим пациента

  24. Proof-of-concept: делаем укольчик

  25. СПОЙЛЕР: НЕ ТОЛЬКО MEASURETEXT ТУТ БЫЛ PHDAYS V

  26. СПОЙЛЕР: АНАЛИЗИРУЕМ РЕЗУЛЬТАТ ТУТ БЫЛ PHDAYS V

  27. XSS – головная боль onion-ресурсов

  28. Вектор атаки

  29. None
  30. None
  31. None

  32. Wazzzzup?! twitter.com/difezza [email protected]