[HTML][HTML] A genomic rule-based KNN model for fast flux botnet detection
Abstract Fast Flux Botnet (FFB) is an advance method developed by cyber criminals to
perpetrate distributed malicious attacks. The major problems of existing FFB detection …
perpetrate distributed malicious attacks. The major problems of existing FFB detection …
Malware traffic detection using tamper resistant features
This paper presents a framework for evaluating the transport layer feature space of malware
heartbeat traffic. We utilize these features in a prototype detection system to distinguish …
heartbeat traffic. We utilize these features in a prototype detection system to distinguish …
DNS tunneling detection through statistical fingerprints of protocol messages and machine learning
The use of covert‐channel methods to bypass security policies has increased considerably
in the recent years. Malicious users neutralize security restriction by encapsulating protocols …
in the recent years. Malicious users neutralize security restriction by encapsulating protocols …
Under the shadow of sunshine: Understanding and detecting bulletproof hosting on legitimate service provider networks
BulletProof Hosting (BPH) services provide criminal actors with technical infrastructure that
is resilient to complaints of illicit activities, which serves as a basic building block for …
is resilient to complaints of illicit activities, which serves as a basic building block for …
A survey on fast-flux attacks
S Zhou - Information Security Journal: A Global Perspective, 2015 - Taylor & Francis
ABSTRACT “Fast-flux” refers to rapidly assigning different IP addresses to the same domain
name. Although there are some legitimate uses for this technique, recently it has become a …
name. Although there are some legitimate uses for this technique, recently it has become a …
A survey of fast flux botnet detection with fast flux cloud computing
A botnet refers to a set of compromised machines controlled distantly by an attacker. Botnets
are considered the basis of numerous security threats around the world. Command and …
are considered the basis of numerous security threats around the world. Command and …
[HTML][HTML] DNS dataset for malicious domains detection
C Marques, S Malta, JP Magalhães - Data in Brief, 2021 - Elsevier
Abstract The Domain Name Service (DNS) is a central point in the functioning of the internet.
Just as organizations use domain names to enable the access to their computational …
Just as organizations use domain names to enable the access to their computational …
Getting prepared for the next botnet attack: Detecting algorithmically generated domains in botnet command and control
T Kelley, E Furey - 2018 29th Irish signals and systems …, 2018 - ieeexplore.ieee.org
This paper highlights the high noise to signal ratio that DNS traffic poses to network
defense'incident detection and response, and the broader topic of the critical time …
defense'incident detection and response, and the broader topic of the critical time …
DNS firewall based on machine learning
C Marques, S Malta, J Magalhães - Future Internet, 2021 - mdpi.com
Nowadays there are many DNS firewall solutions to prevent users accessing malicious
domains. These can provide real-time protection and block illegitimate communications …
domains. These can provide real-time protection and block illegitimate communications …
A machine learning based approach to detect malicious fast flux networks
SAP Kumar, B Xu - 2018 IEEE Symposium Series on …, 2018 - ieeexplore.ieee.org
The fast flux domain or network is defined as the rapid and repeated changes to host or
domain name server resource records, which result in rapid changes in the Internet Protocol …
domain name server resource records, which result in rapid changes in the Internet Protocol …