Upgrade to Pro — share decks privately, control downloads, hide ads and more …

Denis Makrushin - DeanonymizaTOR

Avatar for DC7499 DC7499
May 22, 2015
Research
0
100

Denis Makrushin - DeanonymizaTOR

DEFCON Moscow 8
Avatar for DC7499

DC7499

May 22, 2015
Tweet

More Decks by DC7499

See All by DC7499
Sergey Sobko - Hackashop: Hackathon + Pentest + Workshop [RU]
Avatar for DC7499 defcon
0
530
Dmitry Sklyarov - Intel ME: Security keys Genealogy, Obfuscation and other Magic
Avatar for DC7499 defcon
0
260
Anton Lopanitsyn - Initial reconnaissance of web applications.
Avatar for DC7499 defcon
0
290
Dmitry Volkov - Private messengers: without pain??
Avatar for DC7499 defcon
1
230
Andrey Skuratov and Sergey Migalin - DNS tunneling in 2018. What is that, and what to do with it?
Avatar for DC7499 defcon
2
210
Sergey Belov - Another side of Bug Bounty programs
Avatar for DC7499 defcon
0
300
Dmitry Sklyarov - Intel ME: Flash file system explained
Avatar for DC7499 defcon
0
510
Maxim Goryachiy & Mark Ermolov - Inside Intel Management Engine
Avatar for DC7499 defcon
0
580
Sergey Golovanov - Indecent Response 2018
Avatar for DC7499 defcon
0
510

Other Decks in Research

See All in Research
Google Agent Development Kit (ADK) 入門 🚀
Avatar for MIKIO KUBO mickey_kubo
2
1k
When Submarine Cables Go Dark: Examining the Web Services Resilience Amid Global Internet Disruptions
Avatar for Irvin Chen irvin
0
200
Large Language Model Agent: A Survey on Methodology, Applications and Challenges
Avatar for Shunsuke KITADA shunk031
12
8.1k
Transparency to sustain open science infrastructure - Printemps Couperin
Avatar for Maxence Larrieu mlarrieu
1
170
SSII2025 [TS3] 医工連携における画像情報学研究
Avatar for 画像センシングシンポジウム ssii
PRO
2
1.1k
さくらインターネット研究所 アップデート2025年
Avatar for MATSUMOTO Ryosuke matsumoto_r
PRO
0
640
RapidPen: AIエージェントによるペネトレーションテスト 初期侵入全自動化の研究
Avatar for Sho Nakatani laysakura
0
1.5k
最適化と機械学習による問題解決
Avatar for MIKIO KUBO mickey_kubo
0
140
(NULLCON Goa 2025)Windows Keylogger Detection: Targeting Past and Present Keylogging Techniques
Avatar for Asuka Nakajima asuna_jp
1
520
線形判別分析のPU学習による 朝日歌壇短歌の分析
Avatar for MasaKat0 masakat0
0
130
SSII2025 [TS2] リモートセンシング画像処理の最前線
Avatar for 画像センシングシンポジウム ssii
PRO
7
2.8k
Ad-DS Paper Circle #1
Avatar for Yusuke Kaneko ykaneko1992
0
5.5k

Featured

See All Featured
How to train your dragon (web standard)
Avatar for Monica Dinculescu notwaldorf
93
6.1k
Keith and Marios Guide to Fast Websites
Avatar for Keith Pitt keithpitt
411
22k
Design and Strategy: How to Deal with People Who Don’t "Get" Design
Avatar for Morgane Peng morganepeng
130
19k
Exploring the Power of Turbo Streams & Action Cable | RailsConf2023
Avatar for Kevin Liebholz kevinliebholz
34
5.9k
個人開発の失敗を避けるイケてる考え方 / tips for indie hackers
Avatar for panda_program panda_program
107
19k
Chrome DevTools: State of the Union 2024 - Debugging React & Beyond
Avatar for Addy Osmani addyosmani
7
700
Being A Developer After 40
Avatar for Adrian Kosmaczewski akosma
90
590k
[Rails World 2023 - Day 1 Closing Keynote] - The Magic of Rails
Avatar for Eileen M. Uchitelle eileencodes
35
2.3k
Statistics for Hackers
Avatar for Jake VanderPlas jakevdp
799
220k
Save Time (by Creating Custom Rails Generators)
Avatar for Garrett Dimon garrettdimon
PRO
31
1.2k
Building Flexible Design Systems
Avatar for Yesenia Perez-Cruz yeseniaperezcruz
328
39k
Making Projects Easy
Avatar for Brett Harned brettharned
116
6.3k

Transcript

  1. Немного лирики…

  2. DeanonymizaTOR Denis Makrushin (@difezza) Maria Garnaeva Global Research and Analysis

    Team

  3. «Я знаю что ты делал прошлым летом»

  4. … но как?!

  5. Эксплойты, фингерпринтинг… ну-ну- да.

  6. Flash, html5, entry-node detection… ну- ну-да.

  7. Но КАК … … они нашли мой мегаприватный-0дей-форум?! … они

    нашли мою квартиру?!

  8. ПАССИВНАЯ СИСТЕМА СБОРА ДАННЫХ … ИЛИ КАК ОНИ НАШЛИ МОЙ

    МЕГАПРИВАТНЫЙ-0ДЕЙ-ФОРУМ?!

  9. >> ExitPolicy accept *:*

  10. >>tshark –i 1 –w dump.pcap

  11. Психологический портрет tor- пользователя

  12. Психологический портрет. Часть 2.

  13. 13

  14. 14

  15. АКТИВНАЯ СИСТЕМА СБОРА ДАННЫХ … ИЛИ КТО СТУЧИТСЯ В ДВЕРЬ

    КО МНЕ?!

  16. Traffic injection… ну-ну-да.

  17. Скажи мне, кто ты

  18. Такие разные печеньки

  19. None

  20. ТЕМ ВРЕМЕНЕМ В TBB

  21. А ДАВАЙТЕ ТЕКСТ ПОМЕРЯЕМ

  22. Measuretext

  23. Proof-of-concept: готовим пациента

  24. Proof-of-concept: делаем укольчик

  25. СПОЙЛЕР: НЕ ТОЛЬКО MEASURETEXT ТУТ БЫЛ PHDAYS V

  26. СПОЙЛЕР: АНАЛИЗИРУЕМ РЕЗУЛЬТАТ ТУТ БЫЛ PHDAYS V

  27. XSS – головная боль onion-ресурсов

  28. Вектор атаки

  29. None
  30. None
  31. None

  32. Wazzzzup?! twitter.com/difezza [email protected]