Keynote Session
Detecting Zero-Days Before Zero-Day
Tuesday 21, 14:50h - 15:20h
| Cybersecurity Congress room
21-05-2024 14:50
21-05-2024 15:20
Europe/Madrid
Detecting Zero-Days Before Zero-Day
Classifying novel HTTP based exploits before they are disclosed is the ultimate challenge of any security defense software such as WAFs. This session will share new approaches that leverage network visibility and existing signature-based WAF to generate a high quality true positive training set. Augmented with additional automatically generated samples, users have built a classifier that has successfully "caught" payloads from new CVEs, even before POCs were available. This is a substantial improvement on existing signatures based systems, which often miss new attack vectors and require more frequent fast human intervention to update.
Cybersecurity Congress room
Classifying novel HTTP based exploits before they are disclosed is the ultimate challenge of any security defense software such as WAFs. This session will share new approaches that leverage network visibility and existing signature-based WAF to generate a high quality true positive training set. Augmented with additional automatically generated samples, users have built a classifier that has successfully "caught" payloads from new CVEs, even before POCs were available. This is a substantial improvement on existing signatures based systems, which often miss new attack vectors and require more frequent fast human intervention to update.
Speakers
Organizers
