An introduction of the Kobra, a client for the Badger version 2.0, providing tactical situational awareness, physical tampering protection, and automatic process mitigation

BSidesLV 2015

Presented by: Ahmed Fawaz, Edmond Rogers, William Rogers
Date: Tuesday August 04, 2015
Time: 14:00 - 14:55
Location: Florentine A
Track: Breaking Ground

Kobra is a kernel level client that provides mitigation against malware by blocking access to USB devices, preventing process forking, and blocking access to disk.

Ahmed Fawaz

Ahmed Fawaz is a Ph.D candidate at the Coordinated Science Laboratory (CSL), University of Illinois at Urbana Champaign. He received his B.E. in Electrical and Computer Engineering in 2011 from the American University of Beirut. Currently, he is working on trust issues in monitoring data during cyber incidents and intrusion resilience in the future smart grid through automated response and recovery using control theory, game theory, hybrid systems and machine learning.

Edmond Rogers

Edmond Rogers is a Security Engineer for the University of Illinois Information Trust Institute. Previously, Rogers worked at a fortune 500 Investor Owned Utility in the United States where he was responsible for the cyber security of SCADA systems that operated the bulk electric system. Rogers has also previously been responsible for critical infrastructure security in the financial and telecom industries.

William Rogers

William Rogers is a student and developer of the Badger. Released at Blackhat in 2014. He resides in Urbana Illinois.


KhanFu - Mobile schedules for INFOSEC conferences.
Mobile interface | Alternate Formats