A comprehensive survey on DNS tunnel detection
Y Wang, A Zhou, S Liao, R Zheng, R Hu, L Zhang - Computer Networks, 2021 - Elsevier
Abstract Domain Name System (DNS) tunnels, established between the controlled host and
master server disguised as the authoritative domain name server, can be used as a secret …
master server disguised as the authoritative domain name server, can be used as a secret …
Detecting DNS over HTTPS based data exfiltration
DNS is often used by attackers as a covert channel for data exfiltration, also known as DNS
tunneling. Since the plaintext DNS lookup leads to privacy issues, DNS over HTTPS (DoH) …
tunneling. Since the plaintext DNS lookup leads to privacy issues, DNS over HTTPS (DoH) …
DNS covert channel detection method using the LSTM model
S Chen, B Lang, H Liu, D Li, C Gao - Computers & Security, 2021 - Elsevier
DNS is a kind of basic network protocol that is rarely blocked by firewalls; therefore, it is used
to build covert channels. Malicious DNS covert channels play an important role in data …
to build covert channels. Malicious DNS covert channels play an important role in data …
Time series forecasting and anomaly detection using deep learning
Recent advances in time series forecasting and anomaly detection have been attributed to
the growing popularity of deep learning approaches. Traditional methods, such as rule …
the growing popularity of deep learning approaches. Traditional methods, such as rule …
Monitoring enterprise DNS queries for detecting data exfiltration from internal hosts
Enterprise networks constantly face the threat of valuable and sensitive data being stolen by
cyber-attackers. Sophisticated attackers are increasingly exploiting the Domain Name …
cyber-attackers. Sophisticated attackers are increasingly exploiting the Domain Name …
FECC: DNS tunnel detection model based on CNN and clustering
J Liang, S Wang, S Zhao, S Chen - Computers & Security, 2023 - Elsevier
As the basic service of the network, the Domain Name System (DNS) is almost never
blocked by the firewall. DNS tunnel takes advantage of this feature of DNS service to …
blocked by the firewall. DNS tunnel takes advantage of this feature of DNS service to …
[HTML][HTML] KRTunnel: DNS channel detector for mobile devices
S Wang, L Sun, S Qin, WM Li, W Liu - Computers & Security, 2022 - Elsevier
Nowadays, DNS channel attacks on mobile devices have become a challenging threat.
Attackers usually attack mobile devices and steal information with the help of DNS channel …
Attackers usually attack mobile devices and steal information with the help of DNS channel …
On the impact of DNS over HTTPS paradigm on cyber systems
K Bumanglag, H Kettani - 2020 3rd International Conference on …, 2020 - ieeexplore.ieee.org
The Domain Name System (DNS) protocol has been in use for over thirty years. As the
primary method of resolving domain names to Internet Protocol (IP) addresses, it is a …
primary method of resolving domain names to Internet Protocol (IP) addresses, it is a …
Real-time detection system for data exfiltration over DNS tunneling using machine learning
The domain name system (DNS) plays a vital role in network services for name resolution.
By default, this service is seldom blocked by security solutions. Thus, it has been exploited …
By default, this service is seldom blocked by security solutions. Thus, it has been exploited …
Automatic detection of DGA-enabled malware using SDN and traffic behavioral modeling
Enterprise networks are under enormous threats from sophisticated cyber-attacks. Various
kinds of malware are installed by attackers on compromised hosts, acting as bots that …
kinds of malware are installed by attackers on compromised hosts, acting as bots that …