Firewall and IPS evasion is much easier than you think. In this video we look at a popular OpenSource tool called 'HTTP Evader' to see how we can bypass a next-gen firewall to deliver malware. Next, we'll look at five defensive measures to protect against more than 700 of the most commonly used evasion techniques in the wild.

Evasion intro: 0:42
First firewall evasion test: 1:48
Protocol Analyzer: 2:19
Protocol Enforcement: 3:18
Cargo signatures: 4:22
Second firewall evasion test: 5:48
The need for SSL inspection: 6:13
How deep packet inspection works: 6:48
Multi-layer defense: 8:59
Cached bypass: 9:55
Fragmented/polymorphic malware: 10:29

HTTP evader: https://noxxi.de/research/http-evader.html
PAN cache bypass: https://security.paloaltonetworks.com/CVE-2013-5663

Please take the opportunity to connect and share this video with your friends and family if you find it useful.