Survey and Taxonomy of Adversarial Reconnaissance Techniques

05/11/2021
by   Shanto Roy, et al.
0

Adversaries are often able to penetrate networks and compromise systems by exploiting vulnerabilities in people and systems. The key to the success of these attacks is information that adversaries collect throughout the phases of the cyber kill chain. We summarize and analyze the methods, tactics, and tools that adversaries use to conduct reconnaissance activities throughout the attack process. First, we discuss what types of information adversaries seek, and how and when they can obtain this information. Then, we provide a taxonomy and detailed overview of adversarial reconnaissance techniques. The taxonomy introduces a categorization of reconnaissance techniques based on the technical approach, including target footprinting, social engineering, network scanning, and local discovery. This paper provides a comprehensive view of adversarial reconnaissance that can help in understanding and modeling this complex but vital aspect of cyber attacks as well as insights that can improve defensive strategies, such as cyber deception.

READ FULL TEXT

page 1

page 2

page 3

page 4

research
09/08/2022

Evaluating the Security of Aircraft Systems

The sophistication and complexity of cyber attacks and the variety of ta...
research
07/05/2020

Adversarial Learning in the Cyber Security Domain

In recent years, machine learning algorithms, and more specially, deep l...
research
04/13/2018

Adversarial Clustering: A Grid Based Clustering Algorithm Against Active Adversaries

Nowadays more and more data are gathered for detecting and preventing cy...
research
11/01/2020

Primer – A Tool for Testing Honeypot Measures of Effectiveness

Honeypots are a deceptive technology used to capture malicious activity....
research
06/11/2023

Adversarial Reconnaissance Mitigation and Modeling

Adversarial reconnaissance is a crucial step in sophisticated cyber-atta...
research
05/26/2020

A Taxonomy for Dynamic Honeypot Measures of Effectiveness

Honeypots are computing systems used to capture unauthorized, often mali...
research
07/18/2023

Dead Man's PLC: Towards Viable Cyber Extortion for Operational Technology

For decades, operational technology (OT) has enjoyed the luxury of being...

Please sign up or login with your details

Forgot password? Click here to reset