Advanced Bot Landscape

Recordings

https://www.youtube.com/watch?v=VmB43-vBBbw

View Recording

Slides

/files/slides/001_08-8SW3PQ-Advanced Bot Landscape Yohann Sillam slides.pdf

View Slides

Abstract

Bad bots traffic represents around a quarter of Internet traffic today and is predicted to increase. This traffic includes website content scanning, stolen credit card checking, denial of service, inventory…

In this talk, we describe how as a security company we tackle this variety of threats, how we started our research, the challenges we faced and the solutions we provided.

This talk includes an overview of the general trend in terms of popular bot programming languages, software development frameworks. Then, practical examples will be taken from the most prevalent bots from the OWASP top 10 automated threats. The general architecture of those bots will be displayed. The main components explained before drilling down to the key features they include to remain undetected. How do they evade captcha systems ? How do they avoid fingerprinting ? From the naïve approaches we will introduce you to the most stealthy features.

Yohann Sillam

Yohann Sillam is a researcher from Imperva. He continuously monitors cyber security attacks detected in the wild, publishes blog articles about hidden ones and finds innovative ways to tackle them. He has more than 3 years of experience in cyber security, especially in malware analysis.