A Methodology for Evasion Attacks on Network Intrusion Detection Systems
- Orfila, Agustín (PI)
In this project we developed and evaluated a methodology to evade network intrusion detection systems (NIDS). The work done was grouped into three major phases. In the first one a general methodology to create evasion attacks was defined. Subsequently we studied different alternatives to model a NIDS as a black box. We finally demonstrated its validity by developing new evasion attacks against an anomaly detection system for web traffic (web application firewall).