9. How it works? Magic?
1. Clean out log file
2. Prepare data for clusterization
10. How it works? Magic?
1. Clean out log file
2. Prepare data for clusterization
3. Clusterize data
11. How it works? Magic?
1. Clean out log file
2. Prepare data for clusterization
3. Clusterize data
4. “Picture of Normality”
12. How it works? Magic?
1. Clean out log file
2. Prepare data for clusterization
3. Clusterize data
4. “Picture of Normality”
5. Doing some Machine Learning magic ;)
22. It’s not a DDoS, it’s an “Aggressive Scan”!
DDoS attacks
23. Smart? Dumb? What do you prefer?
for fuzz in range(255):
packet=‘x80x00x00’+chr(fuzz)+’x01x00x00x00’
sock = socket.socket(socket.AF_INET, 1)
sock.connect((IP, PORT))
sock.send(packet)
FUZZING
24. Money talks. But all mine ever says is “Bye!”
Suspicious financial transactions
25. What do you mean I owe you 10.000 $ ???
Toll fraud