Graduated in Applied Informatics with thesis aimed at malware reverse engineering Robert continued the professional career as an IT Security consultant in COMGUARD. Consulting security from the technical point of view for medium and large business brought a lot of experience with network and endpoint security challenges. While promoted to Technical Director Robert looked for another perspective and joined CSIRT.CZ as a security analyst to deal with threat processing automation. Finally ended starting own business aiming at DNS security and fighting the cyber criminals in enterprise and ISP networks. Currently, Robert works as CTO at Whalebone.
PRESENTATION: Neural Networks and Challenges in Detection Malicious DNS Traffic
Pattern recognition is one of the common use cases of Neural Networks. Deep learning brings a lot of new possibilities in detection previously unknown attacks, however, could be also tricky because of the false positives. Speaker will present fresh results of almost year lasting research in the area of detecting threats in DNS traffic. The research team was put together from specialists from Whalebone and researchers from the Czech University of Technology with extensive experience in deep learning and botnet detection. During the presentation, two approaches will be described. One is a Neural network detecting randomly generated domains (aiming at Domain Generation Algorithm based botnets), the second one aims at the behavior of clients over time (aiming more at the detection of infected machines externalities). The speech will go into detail about results from the real world DNS traffic originating from regular households and enterprises.