Recent News – Page 2 – Cyber Operations, Analysis, and Research

Nessus Compliance Generator

COAR Cyber Operations June 30, 2017December 7, 2017

Today we’re releasing a tool called Nessus Compliance Generator as open source under the BSD License. The full code can be found on the Argonne National Laboratory github.

Nessus has many options to check for audit and compliance issues on databases and systems. However, building the config files to do these types of checks can be tedious and time consuming. To bridge this gap, we’ve built a GUI tool to help you stitch the different pieces together and make building compliance tasks more a data entry task than a task for a sysadmin or a programmer.
Read more

Reflecting on Our Second Annual Cyber Defense Competition

COAR Cyber Defense Competition April 11, 2017December 7, 2017

On April 1^st 2017, fifteen collegiate teams from across the country participated in Argonne National Laboratory’s Second Annual Cyber Defense Competition. Blue Teams defended their networking infrastructure and utilities against attacks from the Red Team. This post will detail the highlights of the competition, including how teams were breached, what went into scoring, and how our team built the Industrial Control Systems for the competition.

Welcome to #Argonne's 2nd Annual Cyber Defense Competition! #ArgonneCDC pic.twitter.com/W4PacEaA0L

— Argonne National Lab (@argonne) April 1, 2017

Amazon S3 Outage Highlights Resilience Issues with Cloud Infrastructure

COAR Cyber Analysis March 2, 2017December 7, 2017

Amazon S3 suffered a significant outage on Wednesday in its US-East-1 region. This outage affected a number of companies in what seemed to be unpredictable ways. Yesterday a DNS outage at GoDaddy caused similar effects on availability of what otherwise seems like an unrelated set of Internet sites. We saw similar outages last year as a result of configuration problems at Level 3 and DDoS attacks from the Mirai botnet. All of these outages point to significant resilience issues incurred with cloud and managed hosting services. These resilience issues should be approached as part of risk management planning, but as our recent study in Ashburn VA highlighted, shared vocabulary for these types of informed risk decisions between customers and data center and network providers is often not adequate.

Improving Resilience When We Don’t Have Steady State

COAR Cyber Analysis February 23, 2017December 7, 2017

Nate Evans and Mike Thompson from the COAR team recently spent some time at the African Institute for Mathematics and Science (AIMS) teaching computer networking and cyber security to a cohort of 40 students. During our time at AIMS, we encountered many situations that made us think about how our research in resilience applies in a place like Senegal where we can’t make any assumptions about steady state.

Argonne’s Cyber Defense Competition Provides a Unique Spin on the Traditional Competition Space

COAR Cyber Analysis January 27, 2017December 7, 2017

Argonne National Laboratory’s Cyber Defense Competition

Argonne National Laboratory’s Cyber Operations, Analysis and Research (COAR) team partnered with Education is hosting their second Annual Cyber Defense Competition on Saturday, April 1, 2017 at Argonne National Laboratory. This competition seeks college students from varying levels of higher education and regions within the United States to defend a real-world simulation of an energy and water distribution system. Read more

Cyber Defense Competition – Puzzle #3

COAR Cyber Defense Competition January 10, 2017December 7, 2017

Meditullium.

We’re now sufficiently down the rabbit hole – are you up for a stroll in wonderland?

If so, test your crypto skills by cracking puzzle #3, Meditullium.

This is the third of four puzzles, each of which increases in complexity.

May the odds be in your favor.

If you think you have the correct solution, email CyberDefense-Competition@anl.gov, and the Puzzlemaster will let you know if you have successfully solved the puzzle.

47 6f 6f 64 20 4c 75 63 6b 0d 0

This post was written for the 2017 Cyber Defense Competition.

Holiday Sign-Off

COAR Cyber Analysis, Cyber Operations, Cyber Research December 20, 2016December 7, 2017

In conjunction with the laboratory’s holiday schedule, the COAR website will not be updated for the rest of December.

Be sure to check our website in the new year for more content, articles, and puzzles!

If you are going to the Scholarship for Service: CyberCorps® Career Fair, stop by the Argonne Booth and say hi!

Happy Holidays!
-The COAR Team

Cyber Defense Competition – Puzzle #2

COAR Cyber Analysis December 13, 2016December 7, 2017

Patronizare.

Test your crypto skills by cracking puzzle #2 in this cyber security simulation.

This is the second of four puzzles, each of which increases in complexity.

May the odds be in your favor.

If you think you have the correct solution, email CyberDefense-Competition@anl.gov, and the Puzzlemaster will let you know if you have successfully solved the puzzle.

47 6f 6f 64 20 4c 75 63 6b 0d 0

This post was written for the 2017 Cyber Defense Competition.

Reddit AMA: The ins and outs of working in cybersecurity

COAR Cyber Analysis, Cyber Defense Competition, Cyber Operations, Cyber Research, Cyber Training December 6, 2016December 7, 2017

UPDATE: Reddit AMA is here: https://redd.it/5gujag

coffee-and-tea-1359055910 Join the live Reddit Ask Me Anything (AMA) online event TODAY at 1 p.m. to learn about available cyber security jobs in Argonne’s Cyber Operations, Analysis and Research (COAR) team, part of the Risk and Infrastructure Science Center (RISC). Current team members stand ready to answer your questions about what it’s like to work in cyber security at a national laboratory.

Mirai Attack on Dyn Internet Infrastructure

COAR Cyber Analysis November 30, 2016December 7, 2017

A massive DDoS attack crippled a DNS provider on the East coast, denying millions the ability to access many popular websites and services, such as Spotify, Amazon, Twitter, and more. While DDoS attacks are not an uncommon thing for the internet to see, the magnitude of these recent attacks have made an impact on the history of internet attacks.