Dr. rer. nat. Elmar Padilla

Researcher at Fraunhofer FKIE

Contact
Phone: +49 228 50212-595
Fax: +49 228 73-4571
Email: padilla@REMOVETHISPART.cs.uni-bonn.de
Public key: 0xCCEF17D5
   
Address
  Institute of Computer Science 4
Friedrich-Ebert-Allee 144
53113 Bonn
Germany
Room: Zanderstr. 5, 2.20
 

Publications

 

2017

  • Peter Weidenbach, Raphael Ernst, Elmar Padilla
    Hardware- und hardwarenahe Trojaner
    FKIE Bericht, September 2017.
  • Thomas Barabosch, Niklas Bergmann, Adrian Dombeck, Elmar Padilla
    Quincy: Detecting Host-Based Code Injection Attacks in Memory Dumps
    Proc. of the 14th Conference on Detection of Intrusions and Malware & Vulnerability Assessment, DIMVA, Bonn, Germany, July 06-07, 2017.
  • Elmar Padilla
    Tips to Prevent, Detect & Respond to Cyberattacks - How Safe Is Your Firmware?
    IESE insight, 2nd quarter, 2017.

2016

  • Jonathan Chapman, Elmar Gerhards-Padilla
    Measuring the Effect of Hiding Messages in JPEG Files
    Proc. of the 11th Future Security, Berlin, Germany, September 13-14, 2016.
  • Daniel Plohmann, Khaled Yakdan, Michael Klatt, Johannes Bader, Elmar Gerhards-Padilla
    A Comprehensive Measurement Study of Domain Generating Malware
    Proc. of the 25th USENIX Security Symposium, USENIX Security, Austin, USA, August 10-12, 2016.
  • Khaled Yakdan, Sergej Dechand, Elmar Gerhards-Padilla, Matthew Smith
    Helping Johnny to Analyse Malware: A Usability-Optimzied Decompiler and Malware Analysis User Study
    Proc. of the 37th IEEE Symposium on Security and Privacy, Oakland, San Jose, USA, May 23-25, 2016.
  • Sebastian Eschweiler, Khaled Yakdan, Elmar Gerhards-Padilla
    discovRE: Efficient Cross-Architecture Identification of Bugs in Binary Code
    Proc. of the 23rd Network and Distributed System Security Symposium, NDSS, San Diego, USA, February 21-14, 2016.

2015

  • Thomas Barabosch, Elmar Gerhards-Padilla
    Behavior-Driven Development in Malware Analysis
    Proc. of The botnet fighting conference, Botconf, Paris, France, December 02-04, 2015.
  • Thomas Barabosch, Adrian Dombeck, Khaled Yakdan, Elmar Gerhards-Padilla
    BotWatcher: Transparent and Generic Botnet Tracking
    Proc. of the 18th International Symposium on Research in Attacks, Intrusions and Defenses, RAID, Kyoto, Japan, November 02-04, 2015.
  • Thomas Barabosch, Adrian Dombeck, Elmar Gerhards-Padilla
    ParasiteEx: Disinfecting Parasitic Malware Platform-Independently
    Proc. of the 10th Future Security, Berlin, Germany, September 15-17, 2015.
  • Khaled Yakdan, Sebastian Eschweiler, Elmar Gerhards-Padilla, Matthew Smith
    No More Gotos: Decompilation Using Pattern-Independent Control-Flow Structuring and Semantics-Preserving Transformations
    Proc. of the 22nd Network and Distributed System Security Symposium, NDSS, San Diego, USA, February 08-11, 2015. [Distinguished Paper Award]

2014

  • Peter Martini, Elmar Gerhards-Padilla
    Cyberkriminalität - Licht ins Dunkel bringen
    BSI-Magazin 2013/14.
  • Laura Guevara, Daniel Plohmann, Elmar Gerhards-Padilla
    Semantic Exploration of Binaries
    The botnet fighting conference, Botconf, Nancy, France, December 03-05, 2014.
  • Thomas Barabosch, Elmar Gerhards-Padilla
    Host-Based Code Injection Attacks: A Popular Technique Used By Malware
    Proc. of the 9th International Conference on Malicious and Unwanted Software, MALCON, Fajardo, Puerto Rico, October 28-30, 2014.
  • Jan Gassen, Jonathan Chapman, Elmar Gerhards-Padilla
    HoneyAgent: Detecting Malicious Java Applets by Using Dynamic Analysis
    Proc. of the 9th International Conference on Malicious and Unwanted Software, MALCON, Fajardo, Puerto Rico, October 28-30, 2014.
  • Viviane Zwanger, Elmar Gerhards-Padilla, Michael Meier
    Codescanner: Detecting (Hidden) x86/64 Code in Arbitrary Files
    Proc. of the 9th International Conference on Malicious and Unwanted Software, MALCON, Fajardo, Puerto Rico, October 28-30, 2014. [Best Paper Award]
  • Thomas Barabosch, Sebastian Eschweiler, Elmar Gerhards-Padilla
    Bee Master: Detecting Host-Based Code Injection Attacks
    Proc. of the 11th Conference on Detection of Intrusions and Malware & Vulnerability Assessment, DIMVA, Egham, England, July 10-11, 2014.

2013

  • Thomas Barabosch, Sebastian Eschweiler, Mohammad Qasem, Daniel Panteleit, Daniel Plohmann, Elmar Gerhards-Padilla
    A General-purpose Laboratory for Large-scale Botnet Experiments
    The botnet fighting conference, Botconf, Nantes, France, December 05-06, 2013.
  • Khaled Yakdan, Sebastian Eschweiler, Elmar Gerhards-Padilla
    REcompile: A decompilation framework for static analysis of binaries
    Proc. of the 8th International Conference on Malicious and Unwanted Software, MALWARE, Fajardo, Puerto Rico, October 22-24, 2013.
  • Martin Lambertz, Rafael Uetz, Elmar Gerhards-Padilla
    Resurrection: A Carver for Fragmented Files
    Proc. of the 5th International Conference on Digital Forensics & Cyber Crime, ICDF2C, Moscow, Russia, September 25-27, 2013.
  • Martin Lambertz, Rafael Uetz, Elmar Gerhards-Padilla
    File Carving for Fragmented JPEG Files
    Proc. of the 8th Future Security, Berlin, Germany, September 17-19, 2013.
  • Daniel Plohmann, Sebastian Eschweiler, Elmar Gerhards-Padilla
    Patterns of a Cooperative Malware Analysis Workflow
    Proc. of the 5th International Conference on Cyber Conflict, CyCon, Tallinn, Estonia, June 04-07, 2013.
  • Heli Tiirmaa-Klaar, Jan Gassen, Elmar Gerhards-Padilla, Peter Martini
    Botnets
    Springer Briefs on Cybersecurity,
    Springer Science,
    ISBN 978-1-4471-5215-6, 2013.
  • Andre Wichmann, Elmar Gerhards-Padilla
    Verwendung von Infektionsmarkern zur Immunisierung gegen Schadsoftware
    AFCEA Begleitheft 2013.
  • Jonathan Chapman, Felix Govaers, Elmar Gerhards-Padilla
    Die Botnetze von morgen schon heute erkennen
    AFCEA Begleitheft 2013.

2012

  • Jan Gassen, Elmar Gerhards-Padilla
    Erkennung neuer Schadprogramme
    digma - Zeitschrift für Datenrecht und Informationssicherheit, 12. Jahrgang, Heft 4, December 2012.
  • Andre Wichmann, Elmar Gerhards-Padilla
    Using Infection Markers as a Vaccine against Malware Attacks
    Proc. of the 2nd Workshop on Security of Systems and Software resiLiency, 3SL, Besancon, France, November 20-23, 2012.
  • Martin Lambertz, Nils Aschenbruck, Elmar Gerhards-Padilla
    Applicability of Crypto-based Security Approaches in Tactical Wireless Multi-hop Networks
    Proc. of the 37th IEEE Conference on Local Computer Networks, LCN, Clearwater, USA, October 22-25, 2012.
  • Felix Matenaar, Felix Leder, Andre Wichmann, Elmar Gerhards-Padilla
    CIS: The Crypto Intelligence System for Automatic Detection and Localization of Cryptographic Functions in Current Malware
    Proc. of the 7th International Conference on Malicious and Unwanted Software, MALWARE, Fajardo, Puerto Rico, October 16-18, 2012.
  • Sebastian Pöplau, Jan Gassen, Elmar Gerhards-Padilla
    A Honeypot for Arbitrary Malware on USB Storage Devices
    Proc. of the 7th International Conference on Risks and Security of Internet and Systems, CriSIS, October 10-12, 2012.
  • Jonathan Chapman, Felix Govaers, Elmar Gerhards-Padilla
    Network Traffic Characteristics for Detecting Future Botnets
    Proc. of the Military Communications and Information Systems Conference, MCC, Danzig, Poland, October 08-09, 2012.
  • Thomas Barabosch, Andre Wichmann, Felix Leder, Elmar Gerhards-Padilla
    Automatic Extraction of Domain Name Generation Algorithms from Current Malware
    Proc. of the RTO-IST-111/RSY-026 Symposium, Koblenz, Germany, September 24-26, 2012.
  • Sebastian Eschweiler, Elmar Gerhards-Padilla
    Towards Sound Forensic Acquisition of Volatile Data
    Proc. of the 7th Future Security, Bonn, Germany, September 04-06, 2012.
  • Jonathan Chapman, Felix Govaers, Elmar Gerhards-Padilla
    FKIE Cyber Defense and Sensor Data Fusion: Teaming Up for Better Botnet Detection
    Poster on the 7th Future Security, Bonn, Germany, September 04-06, 2012.
  • Jan Gassen, Elmar Gerhards-Padilla
    HoneypotMe - Extending Honeypot Sensors to Production Systems
    Poster on the 7th Future Security, Bonn, Germany, September 04-06, 2012.
  • Florian Schmitt, Jan Gassen, Elmar Gerhards-Padilla
    PDF Scrutinizer: Detecting JavaScript-based Attacks in PDF Documents
    Proc. of the 10th Annual Conference on Privacy, Security and Trust, PST, Paris, France, July 16-18, 2012.
  • Jan Gassen, Elmar Gerhards-Padilla
    HoneypotMe - Effektivere Honeypots durch Sensoren auf Produktivsystemen
    ADMIN-Magazin, Heft 04/2012, July/August 2012.
  • Jan Gassen, Elmar Gerhards-Padilla
    A Scalable Approach for a Distributed Network of Attack Sensors
    ERCIM-News, No. 90, July 2012.
  • Daniel Plohmann, Elmar Gerhards-Padilla
    Malware and Botnet Analysis Methodology
    ERCIM-News, No. 90, July 2012.
  • Daniel Plohmann, Elmar Gerhards-Padilla
    A Case Study of the Miner Botnet
    Proc. of the 4th International Conference on Cyber Conflict, CyCon, Tallinn, Estonia, June 05-08, 2012.
  • Sebastian Eschweiler, Elmar Gerhards-Padilla
    Platform-Independent Recognition of Procedures in Binaries Based on Simple Characteristics
    it - Information Technology, Band 54, Heft 2, April 2012.
  • Jan Gassen, Elmar Gerhards-Padilla, Peter Martini
    Current Botnet-Techniques and Countermeasures
    Praxis der Informationsverarbeitung und Kommunikation, PIK, Volume 35, Issue 1, April 2012.
  • Elmar Gerhards-Padilla
    Bot-Netze: Der Feind im eigenen Haus - Gekaperte Rechner bedrohen Unternehmen und Behörden
    Mittler-Report, Frühjahr 2012.
  • Daniel Plohmann, Elmar Gerhards-Padilla
    Das schwächste Glied - Wie sich Unternehmen und Behörden vor Cyber-Attacken schützen können
    Mittler-Report, Frühjahr 2012.
  • Daniel Plohmann, Elmar Gerhards-Padilla
    Aktuelles aus der Welt der Botnetze
    IT-Report, 2012.
  • Jan Gassen, Elmar Gerhards-Padilla
    HoneypotMe - Flexible Auslagerung von Honeypot-Sensorik auf gefährdete Endgeräte
    Proc. of the 19th DFN Workshop "Sicherheit in vernetzten Systemen", Hamburg, Germany, February 21-22, 2012.

2011

  • Daniel Plohmann, Elmar Gerhards-Padilla, Felix Leder, Jan Gassen, Andre Wichmann, Sebastian Eschweiler
    Botnets: Detection, Measurement and Defense
    Proc. of the 6th Future Security, Berlin, Germany, September 05-07, 2011.
  • Elmar Gerhards-Padilla, Nils Aschenbruck, Peter Martini
    TOGBAD - An Approach to Detect Routing Attacks in Tactical Environments
    Wiley Security and Communication Networks, Volume 4, Issue 8, August 2011, pp. 793-806.
  • Nils Aschenbruck, Jan Bauer, Raphael Ernst, Elmar Gerhards-Padilla
    Parametrization of Terrestrial Ad-Hoc Routing Protocols for Tactical Underwater Networks
    Proc. of the 4th International Workshop on Tactical Mobile Ad Hoc Networking in conjunction with the 12th ACM International Symposium on Mobile Ad Hoc Networking and Computing, Mobihoc, Paris, France, May 16, 2011.
  • Daniel Plohmann, Elmar Gerhards-Padilla, Felix Leder
    Botnets: Detection, Measurement, Disinfection & Defence
    Technical Report published by the European Network and Information Security Agency (ENISA). Editor: Giles Hogben. Heraklion, Greece, March 2011.
  • Daniel Plohmann, Elmar Gerhards-Padilla, Felix Leder
    Botnets: 10 Tough Questions
    Report published by the European Network and Information Security Agency (ENISA). Editor: Giles Hogben. Heraklion, Greece, March 2011.
  • Elmar Gerhards-Padilla, Nils Aschenbruck, Peter Martini
    TOGBAD-LQ - Using Challenge-Response to Detect False Link Qualities
    Proc. of the 17th Conference on Communication in Distributed Systems, KIVS, Kiel, Germany, March 08-11, 2011.
  • Elmar Gerhards-Padilla, Nils Aschenbruck, Peter Martini
    Wormhole Detection using Topology Graph based Anomaly Detection
    Proc. of the 6th Workshop on Wireless and Mobile Ad-Hoc Networks, WMAN, Kiel, Germany, March 10, 2011.

2010

  • Nils Aschenbruck, Elmar Gerhards-Padilla
    Intrusion Detection in Hierarchically Structured Wireless Multi-Hop Networks
    Proc. of the 3rd International Symposium on Applied Sciences in Biomedical and Communication Technologies
    Special session on ICT for Development and Disaster Recovery, ISABEL, Rome, Italy, November 7-10, 2010.
  • Jan Bauer, Nils Aschenbruck, Raphael Ernst, Elmar Gerhards-Padilla, Peter Martini
    Optimizing ODMRP for Underwater Networks
    Proc. of the Military Communications Conference, MILCOM, San Jose, USA, October 31 - November 3, 2010.
  • Nils Aschenbruck, Elmar Gerhards-Padilla, Peter Martini
    Simulative Evaluation of Adaptive Jamming Detection in Wireless Multi-hop Networks
    Proc. of the 7th Workshop on Wireless Ad hoc and Sensor Networks, WWASN, Genoa, Italy, June 25, 2010.
  • Nils Aschenbruck, Raphael Ernst, Elmar Gerhards-Padilla, Matthias Schwamborn
    BonnMotion - a Mobility Scenario Generation and Analysis Tool
    Proc. of the 3rd International ICST Conference on Simulation Tools and Techniques, SIMUTools, Torremolinos, Malaga, Spain, March 15-19, 2010.

2009

  • Nils Aschenbruck, Elmar Gerhards-Padilla, Peter Martini
    Modelling Mobility in Disaster Area Scenarios
    Special Issue on Performance Evaluation of Wireless Ad Hoc, Sensor and Ubiquitous Networks
    Elsevier Performance Evaluation, Volume 66, Issue 12, December 2009, pp.773-790.
  • Elmar Gerhards-Padilla, Marko Jahnke, Alexander Wenzel
    Intrusion Detection in Tactical Multi-hop Networks
    Demo on 34th IEEE Conference on Local Computer Networks, LCN, Zürich, Switzerland, October 20-23, 2009.
  • Tillmann Werner, Christoph Fuchs, Elmar Gerhards-Padilla, Peter Martini
    Nebula - Generating Syntactical Network Intrusion Signatures
    Proc. of the 4th International Conference on Malicious and Unwanted Software, Malware, Montreal, Canada, October 13-14, 2009.
  • Felix Govaers, Simon Hunke, Elmar Gerhards-Padilla, Peter Martini
    Neuartige Gefahrenbewertung von Schadsoftware
    Proc. of the 16th DFN Workshop "Sicherheit in vernetzten Systemen", Hamburg, Germany, March 17-18, 2009.

2008

  • Elmar Gerhards-Padilla, Nils Aschenbruck, Peter Martini
    Enhancements on and Evaluation of TOGBAD in Tactical MANETS
    Proc. of the 27th Military Communication Conference, MILCOM, San Diego, USA, November 17-19, 2008.
  • Marko Jahnke, Alexander Wenzel, Gabriel Klein, Nils Aschenbruck, Elmar Gerhards-Padilla, Peter Ebinger, Stefan Karsch
    MITE – MANET Intrusion Detection for Tactical Environments
    Proc. of the RTO IST-22-PBM Symposium, Ljubljana, Slovenia, October 15-17, 2008, [Best Paper Award].
  • Nils Aschenbruck, Elmar Gerhards-Padilla, Marko Jahnke, Gabriel Klein, Alexander Wenzel
    Intrusion Detection in Tactical Multi-hop Networks
    Demo on 14th Annual International Conference on Mobile Computing and Networking, Mobicom, San Francisco, USA, September 14-19, 2008.
  • Nils Aschenbruck, Elmar Gerhards-Padilla, Peter Martini
    A Survey on Mobility Models for Performance Analysis in Tactical Mobile Networks
    Journal of Telecommunications and Information Technology (JTIT)
    Vol. 2, 2008, pp. 54-61.

2007

  • Nils Aschenbruck, Elmar Gerhards-Padilla, Michael Gerharz, Matthias Frank, Peter Martini
    Modelling Mobility in Disaster Area Scenarios
    Proc. of the 10th ACM-IEEE International Symposium on Modeling, Analysis and Simulation of Wireless and Mobile Systems, MSWIM, Chania, Crete Island, Greece, October 22-26, 2007.
  • Marko Jahnke, Jens Tölle, Alexander Finkenbrink, Alexander Wenzel, Nils Aschenbruck, Elmar Gerhards-Padilla, Peter Martini
    Methodologies and Frameworks for Testing IDS in Adhoc Networks
    Proc. of the 3rd ACM International Workshop on QoS and Security for Wireless and Mobile Networks, Q2SWinet, Chania, Crete Island, Greece, October 22, 2007.
  • Elmar Gerhards-Padilla, Nils Aschenbruck, Peter Martini, Marko Jahnke, Jens Tölle
    Detecting Blackhole Attacks in Tactical MANETs using Topology Graphs
    Proc. of the the 3rd IEEE LCN Workshop on Network Security, WNS, Dublin, Ireland, October 15, 2007.
  • Nils Aschenbruck, Elmar Gerhards-Padilla, Peter Martini
    A Survey on Mobility Models for Performance Analysis in Tactical Mobile Networks
    Proc. of the Military Communications and Information Systems Conference, MCC, Bonn, Germany, September 25-26, 2007.
  • Elmar Gerhards-Padilla, Nils Aschenbruck
    Detection of Attacks on Application and Routing layer in Tactical MANETs
    Proc. of the 2nd GI SIG SIDAR Graduate Workshop on Reactive Security. SPRING, Dortmund, Germany, July 25, 2007.
  • Elmar Gerhards-Padilla, Marko Jahnke
    Spezielle Sicherheitsrisiken für taktische mobile Adhoc-Netzwerke (MANETs)
    Report Verlag IT-Report, May 2007, pp. 59 - 62

2005

  • Elmar Gerhards-Padilla
    Erweiterung und Evaluation eines Bewegungsmodells für Katastrophenszenarien
    Diploma Thesis, University of Bonn, August 2005

 

 


Public Service

  • Reviewer for ACM Conference on Computer Human Interaction (CHI 2015), Seoul, Korea, 2015
  • Panelist on "Das IT-Sicherheitsgesetz und die Umsetzung der Cybersicherheitsrichtlinie der EU" at Handelsblatt Jahrestagung Strategie Cybersecurity 2014
  • Reviewer for IEEE Conference on Local Computer Networks (LCN 2012), Florida, USA, 2012
  • Organisation of Workshop on Botnet Detection, Measurement, Disinfection & Defence conducted by ENISA, eco, CCD CoE, Fraunhofer FKIE and University Bonn
  • Member Program Committee of Workshop on Botnet Detection, Measurement, Disinfection & Defence
  • Panelist on ICT for Development and Disaster Recovery at ISABEL 2010

 

 


Teaching

  • SS 2011

    • Exercises to "Network Security" (lecture by Dr. Tölle)

  • WS 2010/2011

    • Praktikum "Challenge-Response Based Detection of Link Quality Forgery in MANETs"

  • SS 2010

    • Exercises to "Network Security" (lecture by Dr. Tölle)
    • Lab "Data Communication, Internet Technology, and Mobile Devices" (lab for the international Master Programme of B-IT)

  • WS 2009/2010

    • Lab "Communication in Mobile/Distributed Systems" (lab for the international Master Programme of B-IT)

  • SS 2009

    • Exercises to "Network Security" (lecture by Dr. Tölle)
    • Lab "Computer Networks, Mobile Communication and Network Security" (lab for the international Master Programme of B-IT)

  • WS 2008/2009

    • Seminar "Rechnernetze"
    • Praktikum "Multicast ETX - Auswirkungen auf die Performanz von ODMRP und mögliche Angriffe"
    • Praktikum "Auswirkungen und Detektion von Angriffen gegen OLSR bei Verwendung einer linkqualitätsbasierten Routingmetrik"
    • Lab "Data Communication, Internet Technology, and Mobile Devices" (lab for the international Master Programme of B-IT)

  • SS 2008

    • Seminar "Rechnernetze"
    • Exercises to "Network Security" (lecture by Dr. Tölle)
    • Lab "Data Communication, Internet Technology, and Mobile Devices" (lab for the international Master Programme of B-IT)

  • WS 2007/2008

    • Seminar "Rechnernetze"
    • Lab "Data Communication, Internet Technology, and Mobile Devices" (lab for the international Master Programme of B-IT)

  • SS 2007

    • Exercises to "Network Security" (lecture by Dr. Tölle)
    • Seminar "Rechnernetze"
    • Praktikum "Implementierung und Evaluation eines N-Gramm-basierten Verfahrens zur Erkennung neuartiger Angriffe"
    • Lab "Data Communication, Internet Technology, and Mobile Devices" (lab for the international Master Programme of B-IT)

  • WS 2006/2007

    • Seminar "Rechnernetze"
    • Praktikum "Evaluierung des Potentials von Software Defined Radio für Netzwerk-Messungen"
    • Praktikum "Simulation klassischer Netzwerkangriffe in MANETs mit ns-2"
    • Praktikum "Gezieltes Verwerfen von Paketen geringer Signalstärke zur Stabilisierung von Multi-Hop-Verbindungen in OLSR"
    • Lab "Data Communication, Internet Technology, and Mobile Devices" (lab for the international Master Programme of B-IT)

  • SS 2006

    • Exercises to "Rechnernetze II" (lecture by Prof. Dr. Martini)
    • Exercises to "Advanced Topics on Data Communication & Internet Technology" (lecture for the international Master Programme of B-IT by Prof. Dr. Martini)
    • Seminar "Rechnernetze"
    • Praktikum "Topologiegraphbasierte Erkennung von Black-Hole-Angriffen gegen OLSR"
    • Lab "Data Communication, Internet Technology, and Mobile Devices" (lab for the international Master Programme of B-IT)