Reimagining Cyber Defense – CyberReboot – Reimagining Cyber Defense

The Cyber Attack Chain

The lifecycle of most cyber attacks can be categorized into three distinct phases.
Cyber Reboot currently focuses on the last: Post-compromise.

Pre-compromise

An attacker is tasked with a target and objective, deploys attack infrastructure, and begins to perform reconnaissance of the target.

Compromise

The attack is executed, breaching the target’s defenses and establishing a foothold in the network. The attacker then sets up communication mechanisms back to the attack infrastructure.

Post-compromise

Further exploration of the internal network occurs to identify and access specific information or target systems, collect data, and exfiltrate or otherwise accomplish the objective.

What We’re Working On

SEE ALL PROJECTS

Poseidon

A Python-based application that leverages software defined networks (SDN) to acquire and then feed network traffic to machine learning techniques.

SEE DETAILS
CRviz

Browser-based visualization tool that uses JSON and an interactive enclosure diagram to visualize networks.

SEE DETAILS
Vent

Vent is a light-weight tool, built on a plugin system, that lets you easily leverage Docker containers by building customizable and repeatable pipelines in minutes for collection and analysis.

SEE DETAILS
Pcapplot

Provides a quick visual "thumbnail" snapshot of a network packet capture (PCAP file) from the perspective of a single host/device, generating thumbnails of four distinct properties.

SEE DETAILS

18 May

15 May

4 May

From Our Blog

SEE ALL BLOG POSTS

Using machine learning to classify devices on your network

In this article, we plan to walk readers through using our machine learning code to classify devices on a network.

CRviz: Scalable design for network visualization

This post is the second of 3 about CRviz, a network visualization tool developed by Cyber Reboot.