SEMANTIC NETWORK TRAFFIC ANALYSIS USING DEEP PACKET INSPECTION AND VISUAL ANALYTICS

Bram C.M. Cappers Jarke J. van Wijk b.c.m.cappers@tue.nl j.j.v.wijk@tue.nl

1 of 5 More Info: www.bramcappers.nl

Advanced Persistent Threats (APTs)

2 of 5

Infiltration

Expansion

Sabotage

Wireshark Protocol Analyzer

Messages

Alerts

Attributes

Overview

3 of 5

Attributes Messages

+ Alerts

Conversations

Filtering

open

overflow

close

4 of 5

Results

THANKS FOR YOUR ATTENTION!

Bram C.M. Cappers Jarke J. van Wijk b.c.m.cappers@tue.nl j.j.v.wijk@tue.nl

5 of 5 More Info: www.bramcappers.nl