Packet Tuesday - Punycode Encoding DNS

Channel:

Subscribers:

23,600

Published on November 15, 2022 5:15:00 PM ● Video Link: https://www.youtube.com/watch?v=4TIAE-S4cDA

Duration: 28:36

2,316 views

103

In this episode of Packet Tuesday we analyze a DNS feature.

Each Tuesday Dr. Johannes Ullrich will cover a specific network feature by analyzing a packet to help you better understand networks and network traffic.

Notes:
SEC503 Network Monitoring and Threat Detection In-Depth: https://www.sans.org/u/1obN

Packets: https://packettuesday.com/packets/episode1

OpenSSL Vulnerablity: https://isc.sans.edu/diary/Critical%20OpenSSL%203.0%20Update%20Released.%20Patches%20CVE-2022-3786%2C%20CVE-2022-3602/29208
TCP/IP Cheatsheets (nice to have while watching): https://www.sans.org/posters/tcp-ip-and-tcpdump/

RFCs:
https://www.rfc-editor.org/rfc/rfc1034 Domain Name Concepts
https://www.rfc-editor.org/rfc/rfc1035 DOMAIN NAMES - IMPLEMENTATION AND SPECIFICATIO
https://www.rfc-editor.org/rfc/rfc1101 DNS Encoding
https://www.rfc-editor.org/rfc/rfc3492 Punycode

Feedback:
https://isc.sans.edu/contact.html
jullrich@sans.edu

Other Videos By SANS Cyber Defense

2022-12-01	Once Upon a Login: How Logon Sessions Help Defenders See the Bigger Picture
2022-11-30	Designing Security from the Ground Up
2022-11-29	Packet Tuesday - TCP Urgent Flag
2022-11-28	A Deep Dive into AWS IAM Privilege Escalation Attacks: Defenders’ Edition 2022
2022-11-23	Responding to Advanced Adversaries
2022-11-22	Packet Tuesday - EDNS Option Type 0
2022-11-21	Enabling Defenders to Conduct Incident Response Investigations with Open-Source Tools
2022-11-18	Dispatch from the SOC
2022-11-17	From IT to Blue Team - Your Time is Now!
2022-11-16	Confidence in Chaos: Strategies for World-Class Security Operations
2022-11-15	Packet Tuesday - Punycode Encoding DNS
2022-11-15	Packet Tuesday - Episode 0
2022-11-02	Best Practices and Lessons Learned from Starting Up OSINT Teams
2022-10-27	Lifting the Fog: Cyber Threat Intel (CTI) and Threat Discovery
2022-10-19	Easing Into Consulting; Consulting on The Side & Other Approaches
2022-09-30	Frequently Asked Questions about Cybersecurity Operations
2022-09-29	Lifting the Fog: OPSEC and OSINT
2022-09-22	Getting Started with Infosec Consulting, a beginners and beyond guide
2022-09-21	SEC673 Preview
2022-09-12	Join us for the SANS Blue Team Summit 2022 - October 3-4!
2022-08-25	Lifting the Fog: Geolocation and Vehicle Tracking

Tags:

cyber defense

cyber defenders

johannes ullrich

sans sec503

network analysis

network traffic analysis

dns

dns analysis

intrusion detection

sec503

cyber defense analyst

cyber defense exercise

packet analysis

packet capture

cyber security

dns settings