Tag: covert communication channel

Paper: Alternative communication channel over NTP

The use of DNS as a covert C&C communication channel has been widely documented and is fairly prevalent in the wild. Last week, Palo Alto Networks analysed its use in the various tools of Iran’s OilRig (APT34) group. But DNS is not unique in this. As long ago as 2006, ICMP packets were being used…

April 24, 2019
Paper: Alternative communication channel over NTP

The use of DNS as a covert C&C communication channel has been widely documented and is fairly prevalent in the wild. Last week, Palo Alto Networks analysed its use in the various tools of Iran’s OilRig (APT34) group. But DNS is not unique in this. As long ago as 2006, ICMP packets were being used…

April 24, 2019

Paper: Alternative communication channel over NTP