Using coverage analysis to extract Botnet command-and-control protocol

被引:0
|
作者
Wang, Zhi [1 ]
Cai, Ya-Yun [1 ]
Liu, Lu [1 ]
Jia, Chun-Fu [1 ]
机构
[1] College of Computer and Control Engineering, Nankai University, Tianjin 300071, China
来源
Tongxin Xuebao/Journal on Communications | 2014年 / 35卷 / 01期
关键词
There are some inherent patterns in the bot execution trace coverage of basic blocks. Using these patterns; an approach was proposed to infer Botnet command-and-control protocol (C&C protocol). Without intermediate representation of binary code and constraints solving; this approach has a lower time and space overhead. This coverage analysis approach was evaluated on 3 famous Botnet: Zeus; Sdbot and Agobot. The result shows that this approach can accurately and efficiently extract the Botnet control commands. And the completeness of the extracted control commands could be verified by checking whether all available basic blocks in bot are covered by the traces triggered by the control commands;
D O I
10.3969/j.issn.1000-436x.2014.01.018
中图分类号
学科分类号
摘要
引用
收藏
页码:156 / 166
相关论文
共 50 条
  • [31] Evaluating Email's Feasibility for Botnet Command and Control
    Singh, Kapil
    Srivastava, Abhinav
    Giffin, Jonathon
    Lee, Wenke
    2008 IEEE INTERNATIONAL CONFERENCE ON DEPENDABLE SYSTEMS & NETWORKS WITH FTCS & DCC, 2008, : 376 - 385
  • [32] Command-and-control: Alternative futures of geoengineering in an age of global weirding
    Sweeney, John A.
    FUTURES, 2014, 57 : 1 - 13
  • [33] Command-and-control regulation, incentive for pollution abatement, and market structure
    Ping Lin
    Yu Pang
    Journal of Regulatory Economics, 2020, 57 : 159 - 180
  • [34] Periodic Behavior in Botnet Command and Control Channels Traffic
    AsSadhan, Basil
    Moura, Jose M. F.
    Lapsley, David
    GLOBECOM 2009 - 2009 IEEE GLOBAL TELECOMMUNICATIONS CONFERENCE, VOLS 1-8, 2009, : 2157 - 2162
  • [35] A SURVEY OF BOTNET DETECTION TECHNIQUES BY COMMAND AND CONTROL INFRASTRUCTURE
    Hyslip, Thomas S.
    Pittman, Jason M.
    JOURNAL OF DIGITAL FORENSICS SECURITY AND LAW, 2015, 10 (01) : 7 - 25
  • [36] Command-and-control regulation, incentive for pollution abatement, and market structure
    Lin, Ping
    Pang, Yu
    JOURNAL OF REGULATORY ECONOMICS, 2020, 57 (02) : 159 - 180
  • [37] Efficient Detect Scheme of Botnet Command and Control Communication
    Zeng, Jinquan
    Tang, Weiwen
    Liu, Caiming
    Hu, Jianbin
    Peng, Lingxi
    INFORMATION COMPUTING AND APPLICATIONS, PT 1, 2012, 307 : 576 - +
  • [38] A Basic Command and Control Strategy in Botnet Defense System
    Yamaguchi, Shingo
    2021 IEEE INTERNATIONAL CONFERENCE ON CONSUMER ELECTRONICS (ICCE), 2021,
  • [39] Progress in Command and Control Server Finding Schemes of Botnet
    Guo, Xiaojun
    Cheng, Guang
    Hu, Yifei
    Dai, Mian
    2016 IEEE TRUSTCOM/BIGDATASE/ISPA, 2016, : 1723 - 1727
  • [40] Reliability analysis for command-and-control systems based on edge extension diagram and binary decision diagram
    Li, Yifan
    Huang, Hong-Zhong
    Zhang, Tingyu
    Huang, Sizhe
    Li, Yahua
    QUALITY AND RELIABILITY ENGINEERING INTERNATIONAL, 2023, 39 (08) : 3316 - 3334
12345