Blake Anderson (Cisco Systems, Inc.)
Cisco Systems, Inc.
Publications by Blake Anderson (Cisco Systems, Inc.)
-
Combating Disinformation in DNS and Beyond
February 06, 2023 • Presentation
Blake Anderson (Cisco Systems, Inc.)
This presentation describes commonly employed evasion strategies that attempt to erode the value of domain name-based indicators of compromise, including domain fronting, domain faking, and residential proxying.
read -
Quantifying the Impact of Encrypted DNS for Network Defenders
February 01, 2022 • Video
Blake Anderson (Cisco Systems, Inc.)
Blake Anderson delivered this presentation at FloCon 2022 on January 11, 2022. Watch the video and download the slides.
watch -
The Generation and Use of TLS Fingerprints
January 08, 2019 • Presentation
Blake Anderson (Cisco Systems, Inc.)David McGrew (Cisco Systems, Inc.)Keith Schomburg (Cisco Systems, Inc.)
In this presentation, the authors describe a TLS fingerprinting system and discusses the common pitfalls when using this type of information and analyzes techniques that make effective use of our newly open-sourced TLS fingerprint database.
read -
Detecting Threats, Not Sandboxes
May 18, 2017 • Presentation
Blake Anderson (Cisco Systems, Inc.)David McGrew (Cisco Systems, Inc.)
In this presentation, the authors discuss detecting threats and characterizing network environment to improve Malware Classification.
read -
Classifying Encrypted Traffic with TLS-Aware Telemetry
January 14, 2016 • Presentation
Blake Anderson (Cisco Systems, Inc.)David McGrew (Cisco Systems, Inc.)Alison Kendler (Cisco Systems, Inc.)
In this presentation, the authors propose augmenting the typical 5-tuple with TLS-aware telemetry elements.
read -
Understanding Network Traffic Through Intraflow Data
January 11, 2016 • Presentation
David McGrew (Cisco Systems, Inc.)Blake Anderson (Cisco Systems, Inc.)
In this presentation, the authors describe experiments to collect intraflow data from network taps, endpoints, and malware sandbox runs.
read