| Title | Agent-based ZeroLogon Vulnerability Detection |
| Publication Type | Conference Paper |
| Year of Publication | 2021 |
| Authors | Bezzateev, S. V., Fomicheva, S. G., Zhemelev, G. A. |
| Conference Name | 2021 Wave Electronics and its Application in Information and Telecommunication Systems (WECONF) |
| Keywords | Agent, compositionality, control systems, Critical Vulnerability, Cyber-physical systems, domain controller, Human Behavior, Intrusion detection, intrusion detection system, intrusion prevention, Metrics, pubcrawl, Resiliency, Telecommunications, vulnerability detection |
| Abstract | Intrusion detection systems installed on the information security devices that control the internal and external perimeter of the demilitarized zones are not able to detect the vulnerability of ZeroLogon after the successful penetration of the intruder into the zone. Component solution for ZeroLogon control is offered. The paper presents the research results of the capabilities for built-in Active Directory audit mechanisms and open source intrusion detection/prevention systems, which allow identification of the critical vulnerability CVE-2020-1472. These features can be used to improve the quality of cyber-physical systems management, to perform audits, as well as to check corporate domains for ZeroLogon vulnerabilities. |
| DOI | 10.1109/WECONF51603.2021.9470548 |
| Citation Key | bezzateev_agent-based_2021 |
Agent-based ZeroLogon Vulnerability Detection