Real-time Malicious Fast-flux Detection Using DNS and Bot Related Features

被引:0
|
作者
Martinez-Bea, Sergi [1 ]
Castillo-Perez, Sergio [2 ]
Garcia-Alfaro, Joaquin [3 ]
机构
[1] Artificial Intelligence Res Inst, Bellaterra 08193, Spain
[2] Univ Autonoma Barcelona, E-08193 Barcelona, Spain
[3] Telecom SudParis, CNRS, Samovar UMR 5157, Evry, France
来源
2013 ELEVENTH ANNUAL INTERNATIONAL CONFERENCE ON PRIVACY, SECURITY AND TRUST (PST) | 2013年
关键词
Network Security; Botnets; Fast-Flux; Domain Name System; Malware;
D O I
暂无
中图分类号
TP301 [理论、方法];
学科分类号
081202 ;
摘要
Fast-flux is a protection technique used by botnets to protect their communication servers. We present a detection method for the real-time discovery of fast-flux services. We implemented our approach and conducted experiments that verify the superiority of our approach to previous efforts.
引用
收藏
页码:369 / 372
页数:4
相关论文
共 50 条
  • [1] Fast-Flux Bot Detection in Real Time
    Hsu, Ching-Hsiang
    Huang, Chun-Ying
    Chen, Kuan-Ta
    RECENT ADVANCES IN INTRUSION DETECTION, 2010, 6307 : 464 - +
  • [2] Fast-flucos: malicious domain name detection method for Fast-flux based on DNS traffic
    Han C.
    Zhang Y.
    Zhang Y.
    Tongxin Xuebao/Journal on Communications, 2020, 41 (05): : 37 - 47
  • [3] Formulistic Detection of Malicious Fast-Flux Domains
    Chen, Chia-Mei
    Cheng, Sheng-Tzong
    Chou, Ju-Hsien
    Ou, Ya-Hui
    2012 FIFTH INTERNATIONAL SYMPOSIUM ON PARALLEL ARCHITECTURES, ALGORITHMS AND PROGRAMMING (PAAP), 2012, : 72 - 79
  • [4] Real-time Fast-flux Identification via Localized Spatial Geolocation Detection
    Wang, Horng-Tzer
    Mao, Ching-Hao
    Wu, Kuo-Ping
    Lee, Hahn-Ming
    2012 IEEE 36TH ANNUAL COMPUTER SOFTWARE AND APPLICATIONS CONFERENCE (COMPSAC), 2012, : 244 - 252
  • [5] Detection of Fast-Flux Networks Using Various DNS Feature Sets
    Celik, Z. Berkay
    Oktug, Serna
    2013 IEEE SYMPOSIUM ON COMPUTERS AND COMMUNICATIONS (ISCC), 2013,
  • [6] Genetic-based Real-time Fast-Flux Service Networks Detection
    Lin, Hui-Tang
    Lin, Ying-You
    Chiang, Jui-Wei
    COMPUTER NETWORKS, 2013, 57 (02) : 501 - 513
  • [7] Detection of fast-flux botnets through DNS traffic analysis
    Soltanaghaei, E.
    Kharrazi, M.
    SCIENTIA IRANICA, 2015, 22 (06) : 2389 - 2400
  • [8] Real-time bot infection detection system using DNS fingerprinting and machine-learning
    Quezada, Vicente
    Astudillo-Salinas, Fabian
    Tello-Oquendo, Luis
    Bernal, Paul
    COMPUTER NETWORKS, 2023, 228
  • [9] MISHIMA: Multilateration of Internet Hosts Hidden Using Malicious Fast-Flux Agents
    Banks, Greg
    Fattori, Aristide
    Kemmerer, Richard
    Kruegel, Christopher
    Vigna, Giovanni
    DETECTION OF INTRUSIONS AND MALWARE, AND VULNERABILITY ASSESSMENT, 2011, 6739 : 184 - 193
  • [10] Real-Time Detection of Fast Flux Service Networks
    Caglayan, Alper
    Toothaker, Mike
    Drapeau, Dan
    Burke, Dustin
    Eaton, Gerry
    CATCH 2009: CYBERSECURITY APPLICATIONS AND TECHNOLOGY CONFERENCE FOR HOMELAND SECURITY, PROCEEDINGS, 2009, : 285 - 292
12345