FloCon 2014 Collection
• Collection
Publisher
Software Engineering Institute
Subjects
Abstract
These presentations, training slides, and posters were provided at FloCon 2014, an open conference that provides operational network analysts, tool developers, and researchers a forum to discuss the analysis of large volumes of traffic to showcase the next generation of flow-based analysis techniques.
FloCon 2014 took place at the Francis Marion Hotel in Charleston, South Carolina, on January 13-16, 2014. This open conference provided a forum for operational network analysts, tool developers, researchers, and other parties interested in the analysis of large volumes of traffic to showcase the next generation of flow-based analysis techniques.
Collection Items
Data Fusion at Scale
• Presentation
By Markus Deshon
In this presentation, Markus De Shon discusses data fusion, an automated network situation assessment process.
Learn More
Discovering Unknown Network Activity Using Graphs and Computer Network Data
• Poster
By Eric Dull (Yarc Data)
This poster illustrates how to use broad, deep computer network data, statistics, and graph algorithms to identify and prioritize anomalous network activity.
Download
Distributed Summary Statistics with Bro
• Presentation
By Software Engineering Institute
In this presentation, the author discusses developing statistics that summarize network activity distributed over many sensors, while minimizing memory usage.
Learn More
Finding Malicious Domains Using Shadow Server Reports
• Poster
By Brian Allen (US-CERT)
This poster, presented at FloCon 2014, discusses how to identify malicious domains using shadow server reports.
Download
Investigating APT1
• Presentation
By Deana Shick, Angela Horneman
In this presentation, the authors discuss utilizing the Internet Census 2012 data to understand how public sources tell a story about specific threat groups.
Learn More
LogStash: Yes Logging Can Be Awesome
• Presentation
By James Turnbull (No Affiliation)
In this presentation, James Turnbull discusses how logging can be a core and critical part of your development and operations activities.
Learn More
Network Analysis with SiLK
• Presentation
By Ron Bandes
In this presentation, Ron Bandes provides an introduction to SiLK, a collection of traffic analysis tools.
Learn More
Network Flow Metadata: Very Large Scale Processing with Argus
• Presentation
By Carter Bullard (QuSient LLC)
In this presentation, Carter Bullard defines network flow metadata and describes metadata support in Argus.
Learn More
Network Flows, Past, Present and Future
• Presentation
By Carter Bullard (QuSient LLC)
In this presentation, Carter Bullard the history and future plans for network flow concepts.
Learn More
Network Security Monitoring with IPFIX and Bro
• Presentation
By Randy Caldejon (No Affiliation)
In this presentation, Randy Caldejon discusses whether it's possible to create a framework for producing actionable intelligence with YAF and Bro.
Learn MoreThis content was created for a conference series or symposium and does not necessarily reflect the positions and views of the Software Engineering Institute.