Detection DNS Tunneling Botnets

被引:5
|
作者
Savenko, Bohdan [1 ]
Lysenko, Sergii [1 ]
Bobrovnikova, Kira [1 ]
Savenko, Oleg [1 ]
Markowsky, George [2 ]
机构
[1] Khmelnitsky Natl Univ, Khmelnitsky, Ukraine
[2] Missouri Univ Sci & Technol, Rolla, MO USA
来源
PROCEEDINGS OF THE THE 11TH IEEE INTERNATIONAL CONFERENCE ON INTELLIGENT DATA ACQUISITION AND ADVANCED COMPUTING SYSTEMS: TECHNOLOGY AND APPLICATIONS (IDAACS'2021), VOL 1 | 2021年
关键词
malware; botnet; botnet detection; DNS; DNS tunneling attacks; networks; classifier; network security; GAME MODEL;
D O I
10.1109/IDAACS53288.2021.9661022
中图分类号
TP18 [人工智能理论];
学科分类号
081104 ; 0812 ; 0835 ; 1405 ;
摘要
Botnets are often used in cyberattacks on network services and individual users, so the ability to detect botnets is very important. Botnets use DNS tunneling to send malicious command-and-control (C&C) commands to victims' hosts. Unfortunately, DNS tunneling attacks are very hard to detect. The paper presents a new approach for DNS tunneling botnet detection, which considers all the features and architectural characteristics of botnets. The technique described in this paper is highly efficient at detecting DNS tunneling attacks.
引用
收藏
页码:64 / 69
页数:6
相关论文
共 50 条
  • [41] A LONG SHORT TERM MEMORY MODEL FOR CHARACTER-BASED ANALYSIS OF DNS TUNNELING DETECTION
    Tayyeh, Huda Kadhim
    Al-Jumaili, Ahmed Sabah Ahmed
    SCALABLE COMPUTING-PRACTICE AND EXPERIENCE, 2024, 25 (06): : 5250 - 5257
  • [42] Trapping Botnets by DNS failure graphs: Validation, Extension and Application to a 3G Network
    Baer, Arian
    Paciello, Antonio
    Romirer-Maierhofer, Peter
    2013 PROCEEDINGS IEEE INFOCOM, 2013, : 3159 - 3164
  • [43] Trapping Botnets by DNS failure graphs: Validation, Extension and Application to a 3G Network
    Baer, Arian
    Paciello, Antonio
    Romirer-Maierhofer, Peter
    2013 IEEE CONFERENCE ON COMPUTER COMMUNICATIONS WORKSHOPS (INFOCOM WKSHPS), 2013, : 393 - 398
  • [44] DNS tunnels detection via DNS-images
    D'Angelo, Gianni
    Castiglione, Arcangelo
    Palmieri, Francesco
    INFORMATION PROCESSING & MANAGEMENT, 2022, 59 (03)
  • [45] Botnets: A Heuristic-Based Detection Framework
    Mendonca, Luis
    Santos, Henrique
    PROCEEDINGS OF THE FIFTH INTERNATIONAL CONFERENCE ON SECURITY OF INFORMATION AND NETWORKS, 2012, : 33 - 40
  • [46] Ensemble Learning Techniques for the Detection of IoT Botnets
    Nazir, Ahsan
    He, Jingsha
    Zhu, Nafei
    Ma, Xiangjun
    Ullah, Faheem
    Qureshi, Siraj Uddin
    Wajahat, Ahsan
    PROCEEDINGS OF 2024 3RD INTERNATIONAL CONFERENCE ON CYBER SECURITY, ARTIFICIAL INTELLIGENCE AND DIGITAL ECONOMY, CSAIDE 2024, 2024, : 80 - 85
  • [47] Detection and prevention of botnets and malware in an enterprise network
    Thakur, Manoj Rameshchandra
    Khilnani, Divye Raj
    Gupta, Kushagra
    Jain, Sandeep
    Agarwal, Vineet
    Sane, Suneeta
    Sanyal, Sugata
    Dhekne, Prabhakar S.
    International Journal of Wireless and Mobile Computing, 2012, 5 (02) : 144 - 153
  • [48] Real-Time Detection System for Data Exfiltration over DNS Tunneling Using Machine Learning
    Abualghanam, Orieb
    Alazzam, Hadeel
    Elshqeirat, Basima
    Qatawneh, Mohammad
    Almaiah, Mohammed Amin
    ELECTRONICS, 2023, 12 (06)
  • [49] Advance Approach for Detection of DNS Tunneling Attack from Network Packets Using Deep Learning Algorithms
    Sakarkar, Gopal
    Kolekar, Mahesh Kumar H.
    Paithankar, Ketan
    Patil, Gaurav
    Dutta, Prateek
    Chaturvedi, Ruchi
    Kumar, Shivam
    ADCAIJ-ADVANCES IN DISTRIBUTED COMPUTING AND ARTIFICIAL INTELLIGENCE JOURNAL, 2021, 10 (03): : 241 - 266
  • [50] Classifying DNS Tunneling Tools For Malicious DoH Traffic
    Alenezi, Rafa
    Ludwig, Simone A.
    2021 IEEE SYMPOSIUM SERIES ON COMPUTATIONAL INTELLIGENCE (IEEE SSCI 2021), 2021,
12345