David Wilhite
Senior IT Security Engineer,
University of South Carolina
Seminar 02P - Malware Detection and Mitigation with Passive DNS and Blackhole DNS
PLEASE NOTE: Separate registration and fee are required to attend this seminar.
Monday, April 04 | 2:00PM–5:30PM | Bonham D/Third Level
Session Type:
Professional Development
Modern malware is now highly reliant on DNS systems to coordinate communications between infected clients and controlling servers. This dependency can be exploited to detect and mitigate infections. Passive DNS can be used to discover traffic to malicious domains. Domain registration data can be mined for newly active "evil" sites, and blackhole DNS can cut these channels of communication. In this session we will talk about the infrastructure needed for implementing these measures.
