From throw-away traffic to bots: detecting the rise of DGA-based malware
作者: Roberto Perdisci , David Dagon , Yacin Nadji , Manos Antonakakis , Nikolaos Vasiloglou
DOI:
关键词:
摘要: Many botnet detection systems employ a blacklist of known command and control (C&C) domains to detect bots and block their traffic. Similar to signature-based virus detection, such a …
acm.org 参考文章(30)
Blake Hartstein, Matthew Richard, Steven Adair, Michael Ligh, Malware Analyst's Cookbook and DVD: Tools and Techniques for Fighting Malicious Code ,(2010)
Roberto Perdisci, David Dagon, Manos Antonakakis, Nick Feamster, Wenke Lee, Building a dynamic reputation system for DNS usenix security symposium. pp. 18- 18 ,(2010)
Vinod Yegneswaran, Guofei Gu, Wenke Lee, Martin Fong, Phillip Porras, BotHunter: detecting malware infection through IDS-driven dialog correlation usenix security symposium. pp. 12- ,(2007)
Sandeep Yadav, A. L. Narasimha Reddy, Winning with DNS Failures: Strategies for Faster Botnet Detection Lecture Notes of the Institute for Computer Sciences, Social Informatics and Telecommunications Engineering. pp. 446- 459 ,(2012) , 10.1007/978-3-642-31909-9_26
Fabian Monrose, Srinivas Krishnan, DNS prefetching and its privacy implications: when good things go bad usenix conference on large scale exploits and emergent threats. pp. 10- 10 ,(2010)
Guofei Gu, Wenke Lee, Junjie Zhang, BotSniffer: Detecting Botnet Command and Control Channels in Network Traffic network and distributed system security symposium. ,(2008)
Dan Pelleg, Andrew W. Moore, X-means: Extending K-means with Efficient Estimation of the Number of Clusters international conference on machine learning. pp. 727- 734 ,(2000)
Roberto Perdisci, Guofei Gu, Wenke Lee, Junjie Zhang, BotMiner: clustering analysis of network traffic for protocol- and structure-independent botnet detection usenix security symposium. pp. 139- 154 ,(2008)
P. V. Mockapetris, Domain names - concepts and facilities RFC. ,vol. 1034, pp. 1- 31 ,(1987)
Mark Newman, Networks: An Introduction ,(2010)