Research

Traffic Measurements

Network monitoring, packet dissection and DPI tools, data analysis and visualization using complete data-science stacks.

Internet Infrastructure

Data and control-plane analysis at regional and worlds-largest Internet Exchange Points as well as transnational Internet Service Providers.

Network Security

Deployment of honepyots, DDoS attack detection and mitigation, overall network health assessment and long-term trends.

News

Selected Publications

Spoki: Unveiling a New Wave of Scanners through a Reactive Network Telescope

USENIX Security 2022 Aug 2022
I had the pleasure to support [Raphael] with IXP & ISP measurements to create a large-scale characterization of malicious two-phase scanners. Accepted at USENIX Sec ‘22 conference.
Read Paper

Transparent Forwarders: An Unnoticed Component of the Open DNS Infrastructure

ACM CoNEXT 2021 Dec 2021
Our paper on hidden but open DNS infrastructures which can be used to expose consolidation trends has been accepted at the CoNEXT conference 2021.
Read Paper

QUICsand: Quantifying QUIC Reconnaissance Scans and DoS Flooding Events

ACM IMC 2021 Nov 2021
Our paper on quantifying QUIC DoS attacks has been accepted at the IMC conference 2021. We have also presented our work at [DUST2021].
Read Paper

The Far Side of DNS Amplification: Tracing the DDoS Attack Ecosystem from the Internet Core

ACM IMC 2021 Nov 2021
Our paper on the DNS amplification ecosystem has been accepted at the IMC conference 2021.
Read Paper

Uncovering Vulnerable Industrial Control Systems from the Internet Core

IEEE/IFIP NOMS 2020 Apr 2020
Our paper on vulnerable industrial control systems has been accepted at the NOMS 2020 conference and nominated as 1 of the best 15 technical papers. We were featured by [MIT Technology Review].
Read Paper

Down the Black Hole: Dismantling Operational Practices of BGP Blackholing at IXPs

ACM IMC 2019 Oct 2019
Our paper on BGP Blackholing at IXPs was accepted at the top tier conference ACM IMC 2019. I have presented our findings at [RIPE 79] and [MIX Salottino] and have been featured by [Rule11/APNIC].
Read Paper

On the Potential of BGP Flowspec for DDoS Mitigation at Two Sources: ISP and IXP

ACM SIGCOMM 2018 Aug 2018
Our poster on fine-grained DDoS mitigation was accepted at the ACM SIGCOMM 2018 conference. I was awarded a silver medal at the SIGCOMM Student Research Competition [SRC].
Read Paper

Contact