Coursera Plus Annual is 40% Off — Ends July 6.

Class Central is learner-supported. When you buy through links on our site, we may earn an affiliate commission.

YouTube

Analyzing DNS Traffic for Malicious Activity Using Open Source Logging Tools

via YouTube

Start learning Write review
Coursera Ad

Learn AI, Data Science & Business — Earn Certificates That Get You Hired

Learn More → DataCamp Ad

PowerBI Data Analyst - Create visualizations and dashboards from scratch

Learn More →

Overview

AI, Data Science & Cloud Certificates from Google, IBM & Meta — 40% Off
One plan covers every Professional Certificate on Coursera. 40% off Coursera Plus Annual.
Unlock All Certificates
Explore DNS traffic analysis for malicious activity using open-source logging tools in this 33-minute conference talk from Nolacon 2016. Learn about the basics of DNS monitoring, the Tabasco story, and simple solutions to common problems. Discover various tools, including expensive options and their support levels, as well as common denominators in log processing, indexing, formatting, and shipping. Gain insights into Gray Log, Elastic Search, and DNS amplification. Examine dashboards for data visualization and understand techniques for detecting data exfiltration through DNS traffic.

Syllabus

Introduction
Agenda
The Basics
Tabasco Story
Simple Solution
The Problem
Other Tools
Expensive Tools
Support Levels
Common denominators
Log processing
Log indexing
Log formatting
Log shipping
Log input
Gray Log Sidegar
What is Gray Log
Gray Log 2 Archive
Elastic Search
DNS Amplification
Dashboards
Data Exfiltration

Reviews

Start your review of Analyzing DNS Traffic for Malicious Activity Using Open Source Logging Tools

Start learning

Never Stop Learning.

Get personalized course recommendations, track subjects and courses with reminders, and more.

Sign up for free
Someone learning on their laptop while sitting on the floor.