In this lecture, we will focus on the investigation of malware using dedicated software such as Bro, Security Onion, Snort, etc. We will discuss how data logs should be stored and used in the analysis, what are the methodologies for forensics and how to respond in case of a security incident.
Short bio:
Dr. Mihai Chiroiu received his Ph.D. degree in Computer Science from University POLITEHNICA of Bucharest (UPB) in 2014. From 2009 to 2015, he worked as a network engineer for the Romanian Educational Network and has been the coordinator of the local Cisco Networking Academy. Since 2009, he has been a Teaching Assistant with the Computer Science Department, UPB. He has received the Best Paper Award from ASIACCS in 2015. His research interests include network security, operating systems security, usable security, and mobile security. He is engaged in the entrepreneurship program Innovation Labs since 2015, where he cooperates with teams to surmount their technical challenges and helps the community grow, especially in Bucharest and Timisoara.
Related research:
Mihai is the Principal Investigator and local director of the SecurityHub national and he is running an IoT Security project together with Cisco. His main field of research is the operating system and application security, currently looking into memory patterns and access control in modern operating systems.
Master website: http://sas.cs.pub.ro