Персональные инструменты
Вы здесь: Главная Команда Денис Гамаюнов

Денис Гамаюнов

Автор: Эдуард Торощин at 2008-12-18 00:55 |

Project lead, Руководитель проекта

Денис Гамаюнов

На испытаниях

Dennis Gamayunov received PhD in computer science from Moscow State University in 2007, thesis on "Network objects behavior analysis for intrusion detection".

Currently senior researcher and acting head of the Information systems security lab of the CS Dept of the Moscow State University.

In 2010 organized student CTF team named Bushwhackers, who won 3rd place at RusCrypto CTF 2009, 2nd place in Deutsche Post Security Cup 2010, 1st place at RuCTF 2011 Quals, and stays in top 15 teams of international CTF like iCTF and RuCTFe.

Together with Andrew Petukhov and Vladimir Ivanov (Yandex) developed and now teaches special courses "Introduction to information security" (fall) and "Practical aspects of network security" (spring) at the Moscow State University.

Scientific interests:

  • run-time security monitoring of applications behavior;
  • malicious code detection in network flow;
  • high-speed traffic analysis
  • identity traceback and deanonymization in modern Internet.

Publications are listed below.

Кандидат физико-математических наук, в 2007 г. защитил диссертацию "Обнаружение компьютерных атак на основе анализа поведения сетевых объектов" в Учёном совете ВМК МГУ имени М. В. Ломоносова.

В настоящее время старший научный сотрудник и исполняющий обязанности заведующего Лабораторией безопасности информационных систем ВМК МГУ.

С 2002 года руководит проектами по разработке распределённых систем обнаружения и предотвращения компьютерных атак.

Организовал студенческую команду Bushwhackers для участия в соревнованиях по информационной безопасности, их достижения - третье место на РусКрипто CTF 2009 года, второе место на Deutsche Post Security Cup (2010), первое место на RuCTF Quals 2011.

Разработал и с 2010 года читает спецкурсы "Введение в информационную безопасность", "Практические аспекты сетевой безопасности", совместно с Андреем Петуховым и Владимиром Ивановым (Яндекс).

Научные интересы:

  • верификация поведения приложений в режиме реального времени;
  • обнаружение вредоносного исполнимого кода в сетевом трафике;
  • поведенческие модели компьютерных атак;
  • методы деанонимизации в интернете.

 

Certifications/Сертификаты:

: Cisco Certified Networking Associate (CCNA), Cisco Certified Academy Instructor (CCAI).

 

Publications/Публикации:

  1. Svetlana Gaivoronski, Dennis Gamaynov, Demorpheus: How To Get Rid Of Shellcodes In Your Network. // DEF CON 20 Talk, Las Vegas, USA, 2012.
  2. Dennis Gamayunov, Towards malware-resistant networking environment // In Proc. 1st SysSec Workshop, DIMVA 2011, Amsterdam, 2011.
  3. Dennis Gamayunov, Popper's criterion in network security research. // Journal on High availability systems ("Sistemy vysokoi dostupnosti"), №2, vol.7, pp. 90-92, Radiotechnika, 2011. (In Russian)
  4. Dennis Gamayunov, Tatiana Gornak, Andrey Sapozhnikov, Fedor Sakharov, Edward Toroschin. Fine-grained application behavior control in Linux. // Inside. Information security, No 4, "Afina" publishing, 2010. (In Russian)
  5. Dennis Gamayunov, Nguyen Thoi Minh Quan, Fedor Sakharov, Edward Toroshchin. Racewalk: fast instruction frequency analysis and classification for shellcode detection in network flow. // Proceedings of 5^th European Conference on Computer Network Defense (EC2ND 2009), IEEE Computer Society, Milan, Italy, November 2009.
  6. A. Yelizarov, D. Gamayunov, Visualization of Complex Attacks and State of Attacked Network. // Proceedings of 6^th International Workshop on Visualization for Cyber Security, IEEE VizWeek’09, Atlantic City, New Jersey, USA, October 11, 2009, pp. 1-9
  7.   D. Gamayunov, D. Kazachkin, P. Shugalev, A framework for high-speed network traffic analysis for information security. // Proceedings of the Third Russian Conference "Methods and Tools for Information Processing", Moscow State University, October 6-8, 2009, Moscow, pp. 445-450 (in Russian)
  8. I. Bulgakov, D. Gamayunov, E. Toroschin, Detecting network worms propagation with IA32 instructions frequency analysis. // Proceedings of the Third Russian Conference "Methods and Tools for Information Processing", Moscow State University, October 6-8, 2009, Moscow, pp. 445-450 (in Russian)
  9. S. Bezzubtsev, D. Gamayunov, T. Gornak, A. Sapozhnikov, F. Sakharov, Employing behavior models for enforcing applications secure execution. // Proceedings of the Third Russian Conference "Methods and Tools for Information Processing", Moscow State University, October 6-8, 2009, Moscow, pp. 439-444 (in Russian)
  10. D. Gamayunov, E. Toroshchin. Utilizing instruction frequency analysis for polymorphic shellcode detection in network flow. // Inside. Information security, No 4, "Afina" publishing, 2009. (In Russian)
  11. D. Gamayunov, D. Kazachkin, P. Shugalev. AURA: the framework for high-speed network traffic analysis for information security. // Inside. Information security, No 4, "Afina" publishing, 2009. (In Russian)
  12. D. Gamayunov, D. Kazachkin. AURA: the software framework for high-speed network traffic analysis for information security. // In proceedings of RusCrypto'09, 2009. [HTTP] http://ruscrypto.ru/netcat_files/File/ruscrypto.2009.008.zip (in Russian)
  13. D. Gamayunov, A. Sapozhnikov. Detecting anomalous application behavior at kernel level. // Software systems and tools, No 9 Faculty of Computational Mathematics and Cybernetics of the Lomonosov Moscow State University, 2008. (in Russian
  14. D. Kazachkin, D. Gamayunov. Network traffic analysis optimization at signature-based intrusion detection systems. // In Proceedings of SYRCoSE 2008, Vol 1.
  15. D. Gamayunov, R. Smeliansky. A model of the behavior of network objects in distributed computer systems. // Programming and Computing Software, Volume 33, Issue 4, pp. 195-203, 2007.
  16. D. Gamayunov, A. Kachalin. A methodics for tuning intellectual detectors of computer attacks for corporate networks. // Artificial intelligence, 2006 No. 2, pp. 30-34. (in Russian)
  17. D. Gamayunov, A. Kachalin. Intrusion detection based on distributed system state transitions analysis. // Artificial intelligence, 2004 No. 2, pp. 49-53. (in Russian)
  18. D. Gamayunov, A. Kachalin. Intrusion detection as an image recognition task. // In proceedings of the fifth Russian Applied and Industrial Mathematics Symposium, Kislovodsk, 2004. (in Russian)
  19. D. Gamayunov, R. Smeliansky. Modern non-commercial intrusion detection tools. // Software systems and tools, Faculty of Computational Mathematics and Cybernetics of the Lomonosov Moscow State University, 2002. (in Russian)
Действия с Документом