Behavior analysis based dns tunneling detection and classification framework for network security
作者: Mark Threefoot , Les Smith , Bin Yu
DOI:
关键词:
摘要: New and improved techniques for a behavior analysis based DNS tunneling detection classification framework network security are disclosed. In some embodiments, platform implementing an analytics is provided facilitating detection. For example, online can implement on passive traffic analysis.
lens.org 参考文章(38)
Matthew Knysz, Kang G. Shin, Xin Hu, RB-Seeker: Auto-detection of Redirection Botnets. network and distributed system security symposium. ,(2009)
Roberto Perdisci, David Dagon, Manos Antonakakis, Nick Feamster, Wenke Lee, Notos: Building a Dynamic Reputation System for DNS ,(2010)
John Todd, Sai Sivanesan, David Cann, Network Security Device ,(2007)
Roberto Perdisci, David Dagon, Manos Antonakakis, Wenke Lee, Method and system for determining whether domain names are legitimate or malicious ,(2011)
Saumyavapuh Lugani, Snigdhendu Mukhopadhyay, Kuntal Daftary, Chui-Tin Yen, Method and apparatus for detecting botnets ,(2010)
Aaron R. Davis, Timothy M. Aldrich, Detection of Infected Network Devices and Fast-Flux Networks By Tracking URL And DNS Resolution Changes ,(2016)
Antony Arthur Riley, David Alexander Stewart, Ben Mankin, System and method for fast flux detection ,(2009)
Cormac Herley, Stuart Edward Schechter, Predicting next characters in password generation ,(2012)
David Gustafson, Kenton Born, Detecting DNS Tunnels Using Character Frequency Analysis arXiv: Cryptography and Security. ,(2010)