{"678637":{"#nid":"678637","#data":{"type":"event","title":"PhD Proposal by Athanasios Avgetidis","body":[{"value":"\u003Cp\u003E\u003Cstrong\u003ETitle\u003C\/strong\u003E: Towards Understanding the Lifecycle of Malicious Network Infrastructure\u003C\/p\u003E\u003Cp\u003E\u0026nbsp;\u003C\/p\u003E\u003Cp\u003E\u003Cstrong\u003EDate\u003C\/strong\u003E: Tuesday, December 3, 2024\u003C\/p\u003E\u003Cp\u003E\u003Cstrong\u003ETime\u003C\/strong\u003E: 3:00 PM \u2013 5:00 PM ET\u003C\/p\u003E\u003Cp\u003E\u003Cstrong\u003ELocation\u0026nbsp;\u003C\/strong\u003E[Hybrid]:\u0026nbsp; 3126 Conference Room Klaus \u0026amp; Zoom\u003C\/p\u003E\u003Cp\u003E\u003Cstrong\u003EZoom Link:\u0026nbsp;\u003C\/strong\u003E\u003Ca href=\u0022https:\/\/gatech.zoom.us\/j\/98536458994?pwd=1z2b49FvKG7yCbpRCFoRgmUMBvZ92x.1\u0022\u003Ehttps:\/\/gatech.zoom.us\/j\/98536458994?pwd=1z2b49FvKG7yCbpRCFoRgmUMBvZ92x.1\u003C\/a\u003E\u003C\/p\u003E\u003Cp\u003E\u0026nbsp;\u003C\/p\u003E\u003Cp\u003E\u003Cstrong\u003EAthanasios Avgetidis\u003C\/strong\u003E\u003C\/p\u003E\u003Cp\u003EPh.D. CS Student\u003C\/p\u003E\u003Cp\u003ESchool of Cybersecurity and Privacy\u003C\/p\u003E\u003Cp\u003ECollege of Computing\u003C\/p\u003E\u003Cp\u003EGeorgia Institute of Technology\u003C\/p\u003E\u003Cp\u003E\u0026nbsp;\u003C\/p\u003E\u003Cp\u003E\u003Cstrong\u003ECommittee:\u003C\/strong\u003E\u003C\/p\u003E\u003Cp\u003EDr. Manos Antonakakis (Advisor),\u0026nbsp;School of Electrical and Computer Engineering, Georgia Institute of Technology\u003C\/p\u003E\u003Cp\u003EDr. Angelos D. Keromytis (Co-Advisor), School of Electrical and Computer Engineering, Georgia Institute of Technology\u003C\/p\u003E\u003Cp\u003EDr. Fabian Monrose, School of Electrical and Computer Engineering, Georgia Institute of Technology\u003C\/p\u003E\u003Cp\u003EDr. Roberto Perdisci, School of Computing, University of Georgia\u003C\/p\u003E\u003Cp\u003EDr. Alberto Dainotti, School of Computer Science, Georgia Institute of Technology\u0026nbsp;\u003C\/p\u003E\u003Cp\u003E\u0026nbsp;\u003C\/p\u003E\u003Cp\u003E\u003Cstrong\u003EAbstract:\u003C\/strong\u003E\u003C\/p\u003E\u003Cp\u003E\u0026nbsp;\u003C\/p\u003E\u003Cp\u003ENetwork infrastructure is an important component of malicious cyber operations. Cyber adversaries utilize network infrastructure for command and control, data exfiltration, malware hosting and social engineering among others. Over the years, while there have been several studies that have focused on detecting, blocking and characterizing malicious infrastructure, the temporal aspect of how this infrastructure changes over time and how this affects common security and forensic tasks has often been overlooked. This thesis shows that temporal analysis of malicious infrastructure reveals unknown forensic information hidden in network datasets that are used in modern defensive operations \u2014\u0026nbsp;systematic discovery and analysis of such unknown forensic information enables more comprehensive understanding of Internet threats.\u0026nbsp;\u0026nbsp;\u003C\/p\u003E\u003Cp\u003EIn this proposal, I will shed light on the lifecycle of malicious infrastructure through presenting the findings of three empirical measurement studies utilizing different network vantage points. First, I will demonstrate how targeting analysis from a network perspective is temporally sensitive by utilizing the unique vantage point of Authoritative DNS. Second, I will present the first large scale measurement study of the lifecycle of password stealers and their operators showcasing how they manage their operations over a span of 20 months. Lastly, I will introduce my ongoing work on characterizing the lifecycle of the domain names of Advanced Persistent Threats (APT), by proposing Atropos, a novel system that automatically and accurately identifies APT-controlled infrastructure in historical DNS logs.\u0026nbsp;\u003C\/p\u003E","summary":"","format":"limited_html"}],"field_subtitle":"","field_summary":[{"value":"\u003Cp\u003ETowards Understanding the Lifecycle of Malicious Network Infrastructure\u003C\/p\u003E","format":"limited_html"}],"field_summary_sentence":[{"value":"Towards Understanding the Lifecycle of Malicious Network Infrastructure"}],"uid":"27707","created_gmt":"2024-11-25 18:36:51","changed_gmt":"2024-11-25 18:39:04","author":"Tatianna Richardson","boilerplate_text":"","field_publication":"","field_article_url":"","field_event_time":{"event_time_start":"2024-12-03T15:00:00-05:00","event_time_end":"2024-12-03T17:00:00-05:00","event_time_end_last":"2024-12-03T17:00:00-05:00","gmt_time_start":"2024-12-03 20:00:00","gmt_time_end":"2024-12-03 22:00:00","gmt_time_end_last":"2024-12-03 22:00:00","rrule":null,"timezone":"America\/New_York"},"location":"3126 Conference Room Klaus \u0026 Zoom","extras":[],"groups":[{"id":"221981","name":"Graduate Studies"}],"categories":[],"keywords":[{"id":"102851","name":"Phd proposal"}],"core_research_areas":[],"news_room_topics":[],"event_categories":[{"id":"1788","name":"Other\/Miscellaneous"}],"invited_audience":[{"id":"78771","name":"Public"}],"affiliations":[],"classification":[],"areas_of_expertise":[],"news_and_recent_appearances":[],"phone":[],"contact":[],"email":[],"slides":[],"orientation":[],"userdata":""}}}