Detection of DNS tunneling by feature-free mechanism
CM Lai, BC Huang, SY Huang… - 2018 IEEE Conference …, 2018 - ieeexplore.ieee.org
DNS is a very popular protocol which is responsible for translate domain name to IP
address. Attacker can exploit DNS to hide data in DNS tunnel as the organization would not …
address. Attacker can exploit DNS to hide data in DNS tunnel as the organization would not …
Towards comprehensive detection of DNS tunnels
M Luo, Q Wang, Y Yao, X Wang… - 2020 IEEE Symposium …, 2020 - ieeexplore.ieee.org
The Domain Name System (DNS) is a fundamental service of the Internet, and the DNS
tunnel is one of the most threatening abuses of DNS, posing a huge threat to user privacy …
tunnel is one of the most threatening abuses of DNS, posing a huge threat to user privacy …
Detecting DNS tunnel through binary-classification based on behavior features
J Liu, S Li, Y Zhang, J Xiao, P Chang… - 2017 IEEE Trustcom …, 2017 - ieeexplore.ieee.org
DNS tunnel is a typical Internet covert channel used by attackers or bots to evade the
malicious activities detection. The stolen information is encoded and encapsulated into the …
malicious activities detection. The stolen information is encoded and encapsulated into the …
Encrypt DNS traffic: Automated feature learning method for detecting DNS tunnels
S Ding, D Zhang, J Ge, X Yuan… - 2021 IEEE Intl Conf on …, 2021 - ieeexplore.ieee.org
In recent years, attacks on the DNS continue to proliferate due to the lack of security
mechanisms. DNS over HTTPS (DoH) is a standard developed for encrypting plaintext DNS …
mechanisms. DNS over HTTPS (DoH) is a standard developed for encrypting plaintext DNS …
TDAE: Autoencoder-based automatic feature learning method for the detection of DNS tunnel
K Wu, Y Zhang, T Yin - ICC 2020-2020 IEEE International …, 2020 - ieeexplore.ieee.org
The DNS protocol is one of the most important network infrastructure protocols. The
encrypted information based on this protocol will not be intercepted by the firewall, so the …
encrypted information based on this protocol will not be intercepted by the firewall, so the …
DNS-Tunnet: A Hybrid Approach for DNS Tunneling Detection
A Lal, A Prasad, A Kumar… - 2022 4th International …, 2022 - ieeexplore.ieee.org
Domain Name Service (DNS) is a well-trusted protocol for translating domain name to IP
address. However, cybercriminals have found new ways to launch attacks through this …
address. However, cybercriminals have found new ways to launch attacks through this …
[PDF][PDF] A Survey of DNS Tunnelling Detection Techniques Using Machine Learning.
The Domain Name System (DNS) is an essential network service translating human-friendly
host names into numerical IP addresses. Prior to almost any network communication, a …
host names into numerical IP addresses. Prior to almost any network communication, a …
DNS tunnelling detection by fusing encoding feature and behavioral feature
For a long time, DNS tunnels have played a pivotal role in advanced persistent threat (APT)
attacks, posing a threat to the real-world network environment. Existing approaches either …
attacks, posing a threat to the real-world network environment. Existing approaches either …
A byte-level CNN method to detect DNS tunnels
C Liu, L Dai, W Cui, T Lin - 2019 IEEE 38th International …, 2019 - ieeexplore.ieee.org
DNS tunnel is a technology used to bypass firewalls for data exfiltration. It takes advantage
of the characteristic of firewalls that always allow DNS traffic pass. Most of the studies have …
of the characteristic of firewalls that always allow DNS traffic pass. Most of the studies have …
Cache-property-aware features for dns tunneling detection
N Ishikura, D Kondo, I Iordanov… - … 23rd Conference on …, 2020 - ieeexplore.ieee.org
A lot of enterprises are under threat of targeted attacks causing data exfiltration. As a means
of performing the attacks, attackers and their malware have exploited DNS tunneling in …
of performing the attacks, attackers and their malware have exploited DNS tunneling in …