Teaching
Stratosphere IPS
Czech Technical University in Prague’s ...

We are thrilled to announce that, for the first time, the Czech Technical University in Prague is offering the "Introduction to Security" course as a Massive Open Online Course!

Czech Technical University in Prague’s "Introduction to Security" Class is now a Free Online Course!
Stratosphere IPS
Google Summer Of Code 2024 In Stratosphere. ...

This blog covers my ongoing GSoC project 2024. It provides information about the current progress of my work, as well as my experiences and lessons learned along the way.

Google Summer Of Code 2024 In Stratosphere. Blog for the first month of Sekhar Kumar Dash
Slips, GSoC2023
Stratosphere IPS
Announcing Google Summer of Code 2023 Projects

Stratosphere is happy to announce the accepted projects in the Google Summer of Code (GSoC) 2023!

Announcing Google Summer of Code 2023 Projects
Stratosphere IPS
Winner of the International Cybercrime Research ...

After evaluating all the works sent by the candidates, at the end of the September 2022, the winner was selected! The award and money prize was given to Estelle Ruellan a master student of criminology from the Université de Montréal!

Winner of the International Cybercrime Research Summer Award 2022
Slips
Stratosphere IPS
Slips in BlackHat US 2022 Arsenal in Las Vegas!

We are happy to announce that Slips will be presented at BlackHat USA 2022 Arsenal in Las Vegas on Thursday, August 11, from 1:00 pm to 2:30 pm: https://bit.ly/SlipsBHUSA22.

Slips in BlackHat US 2022 Arsenal in Las Vegas!

network traffic

Dissecting a RAT. Analysis of the AndroRAT.

Dissecting a RAT. Analysis of the AndroRAT.

This is the fourth blog of a series analyzing the network traffic of Android RATs from our Android Mischief Dataset [more information here], a dataset of network traffic from Android phones infected with Remote Access Trojans (RAT). In this blog post we provide the analysis of the network traffic of the RAT05-AndroRAT [download here]. The previous blogs analyzed Android Tester RAT, DroidJack RAT, and SpyMax RAT.

Dissecting a RAT. Analysis of the SpyMAX.

Dissecting a RAT. Analysis of the SpyMAX.

This is the third blog of a series analyzing the network traffic of Android RATs from our Android Mischief Dataset [more information here], a dataset of network traffic from Android phones infected with Remote Access Trojans (RAT). In this blog post we provide the analysis of the network traffic of the RAT04-SpyMAX [download here].

Writing a SLIPS Module

Writing a SLIPS Module

In this blogpost, we will walk through the process of developing a new SLIPS module: the VirusTotal (VT) module. This module will listen for new IP addresses and check them against VirusTotal API. VirusTotal returns detailed information on each IP, and the module will process this information and save it to the shared database.

Notes From The Lab: Sudden Increase of Traffic to Port 445

Notes From The Lab: Sudden Increase of Traffic to Port 445

Today @VessOnSecurity tweeted that they have seen an increase on the number of SMB attacks in their honeypot (See Figure 1). We checked our telemetry and indeed we saw an increase on the incoming traffic to our honeypots on port 445. We will describe in this blog post the observations from our telemetry.

Project Ludus - Smart Honeypot Manager for Collaborative Defense

Project Ludus - Smart Honeypot Manager for Collaborative Defense

In this blogpost we introduce our tool which uses honeypots as a defense mechanism based on the game theoretical model of behavior of the attackers. Ludus fully automates honeypot deployment and management and visualize results in the level of individual routers. [Read more]

Protecting the civil society through high quality research