{"guid":"e5bc69e4-32f7-4a46-9bfc-3b86f4b61070","title":"BGPeek-a-Boo: Active BGP-based Traceback for Amplification DDoS Attacks","subtitle":"","slug":"vnog-11-bgpeek-a-boo-active-bgp-based-tr","link":"https://c3voc.de","description":"This is the recording of a virtual NOG meeting held at April 9th 2021.\r\n\r\nThis is talk about reflective DDoS which lets attackers hide behind IP spoofing and explore how BGP poisoning can help to trace back these attacks.\r\n\r\nErrata: Contrary to the statement on slide 30, the resulting graphs are only rooted and directed, but not necessarily acyclical. Yet they still provide all required properties.","original_language":"eng","persons":["Johannes Krupp"],"tags":["vNOG","11","2021"],"view_count":265,"promoted":false,"date":"2021-04-09T20:00:00.000+02:00","release_date":"2021-04-16T00:00:00.000+02:00","updated_at":"2025-12-29T17:15:06.196+01:00","length":2010,"duration":2010,"thumb_url":"https://static.media.ccc.de/media/contributors/vNOG/11-e5bc69e4-32f7-4a46-9bfc-3b86f4b61070.jpg","poster_url":"https://static.media.ccc.de/media/contributors/vNOG/11-e5bc69e4-32f7-4a46-9bfc-3b86f4b61070_preview.jpg","timeline_url":"https://static.media.ccc.de/media/contributors/vNOG/11-e5bc69e4-32f7-4a46-9bfc-3b86f4b61070.timeline.jpg","thumbnails_url":"https://static.media.ccc.de/media/contributors/vNOG/11-e5bc69e4-32f7-4a46-9bfc-3b86f4b61070.thumbnails.vtt","frontend_link":"https://media.ccc.de/v/vnog-11-bgpeek-a-boo-active-bgp-based-tr","url":"https://api.media.ccc.de/public/events/e5bc69e4-32f7-4a46-9bfc-3b86f4b61070","conference_title":"vNOG Meetings","conference_url":"https://api.media.ccc.de/public/conferences/vNOG","related":[],"recordings":[{"size":63,"length":2010,"mime_type":"video/webm","language":"eng","filename":"vNOG-11-eng-BGPeek-a-Boo_Active_BGP-based_Traceback_for_Amplification_DDoS_Attacks_webm-hd.webm","state":"new","folder":"webm-hd","high_quality":true,"width":1280,"height":720,"updated_at":"2021-04-16T12:44:02.903+02:00","recording_url":"https://cdn.media.ccc.de/contributors/vNOG/webm-hd/vNOG-11-eng-BGPeek-a-Boo_Active_BGP-based_Traceback_for_Amplification_DDoS_Attacks_webm-hd.webm","url":"https://api.media.ccc.de/public/recordings/53031","event_url":"https://api.media.ccc.de/public/events/e5bc69e4-32f7-4a46-9bfc-3b86f4b61070","conference_url":"https://api.media.ccc.de/public/conferences/vNOG"},{"size":43,"length":2010,"mime_type":"video/webm","language":"eng","filename":"vNOG-11-eng-BGPeek-a-Boo_Active_BGP-based_Traceback_for_Amplification_DDoS_Attacks_webm-sd.webm","state":"new","folder":"webm-sd","high_quality":false,"width":720,"height":576,"updated_at":"2021-04-16T12:40:55.924+02:00","recording_url":"https://cdn.media.ccc.de/contributors/vNOG/webm-sd/vNOG-11-eng-BGPeek-a-Boo_Active_BGP-based_Traceback_for_Amplification_DDoS_Attacks_webm-sd.webm","url":"https://api.media.ccc.de/public/recordings/53030","event_url":"https://api.media.ccc.de/public/events/e5bc69e4-32f7-4a46-9bfc-3b86f4b61070","conference_url":"https://api.media.ccc.de/public/conferences/vNOG"},{"size":30,"length":2010,"mime_type":"audio/mpeg","language":"eng","filename":"vNOG-11-eng-BGPeek-a-Boo_Active_BGP-based_Traceback_for_Amplification_DDoS_Attacks_mp3.mp3","state":"new","folder":"mp3","high_quality":false,"width":0,"height":0,"updated_at":"2021-04-16T12:35:24.338+02:00","recording_url":"https://cdn.media.ccc.de/contributors/vNOG/mp3/vNOG-11-eng-BGPeek-a-Boo_Active_BGP-based_Traceback_for_Amplification_DDoS_Attacks_mp3.mp3","url":"https://api.media.ccc.de/public/recordings/53028","event_url":"https://api.media.ccc.de/public/events/e5bc69e4-32f7-4a46-9bfc-3b86f4b61070","conference_url":"https://api.media.ccc.de/public/conferences/vNOG"},{"size":39,"length":2010,"mime_type":"video/mp4","language":"eng","filename":"vNOG-11-eng-BGPeek-a-Boo_Active_BGP-based_Traceback_for_Amplification_DDoS_Attacks_sd.mp4","state":"new","folder":"h264-sd","high_quality":false,"width":720,"height":576,"updated_at":"2021-04-16T12:34:24.589+02:00","recording_url":"https://cdn.media.ccc.de/contributors/vNOG/h264-sd/vNOG-11-eng-BGPeek-a-Boo_Active_BGP-based_Traceback_for_Amplification_DDoS_Attacks_sd.mp4","url":"https://api.media.ccc.de/public/recordings/53027","event_url":"https://api.media.ccc.de/public/events/e5bc69e4-32f7-4a46-9bfc-3b86f4b61070","conference_url":"https://api.media.ccc.de/public/conferences/vNOG"},{"size":20,"length":2010,"mime_type":"audio/opus","language":"eng","filename":"vNOG-11-eng-BGPeek-a-Boo_Active_BGP-based_Traceback_for_Amplification_DDoS_Attacks_opus.opus","state":"new","folder":"opus","high_quality":false,"width":0,"height":0,"updated_at":"2021-04-16T12:33:23.792+02:00","recording_url":"https://cdn.media.ccc.de/contributors/vNOG/opus/vNOG-11-eng-BGPeek-a-Boo_Active_BGP-based_Traceback_for_Amplification_DDoS_Attacks_opus.opus","url":"https://api.media.ccc.de/public/recordings/53026","event_url":"https://api.media.ccc.de/public/events/e5bc69e4-32f7-4a46-9bfc-3b86f4b61070","conference_url":"https://api.media.ccc.de/public/conferences/vNOG"},{"size":48,"length":2010,"mime_type":"video/mp4","language":"eng","filename":"vNOG-11-eng-BGPeek-a-Boo_Active_BGP-based_Traceback_for_Amplification_DDoS_Attacks_hd.mp4","state":"new","folder":"h264-hd","high_quality":true,"width":1280,"height":720,"updated_at":"2021-04-16T12:31:11.427+02:00","recording_url":"https://cdn.media.ccc.de/contributors/vNOG/h264-hd/vNOG-11-eng-BGPeek-a-Boo_Active_BGP-based_Traceback_for_Amplification_DDoS_Attacks_hd.mp4","url":"https://api.media.ccc.de/public/recordings/53025","event_url":"https://api.media.ccc.de/public/events/e5bc69e4-32f7-4a46-9bfc-3b86f4b61070","conference_url":"https://api.media.ccc.de/public/conferences/vNOG"}]}