LagProber: Detecting DGA-Based Malware by Using Query Time Lag of Non-existent Domains
作者: Xi Luo , Liming Wang , Zhen Xu , Wei An
DOI: 10.1007/978-3-030-01950-1_3
关键词:
摘要: … DGA-based malware detection approaches using the time-based features, eg, periodicity of C&C connections and change points of NXDomain traffic, … , to detect DGA bots in large scale …
springer.com
sci-hub.se 参考文章(27)
Matthew Thomas, Aziz Mohaisen, Kindred domains Proceedings of the 23rd International Conference on World Wide Web - WWW '14 Companion. pp. 707- 712 ,(2014) , 10.1145/2567948.2579359
Stefano Schiavoni, Federico Maggi, Lorenzo Cavallaro, Stefano Zanero, Phoenix: DGA-Based Botnet Tracking and Intelligence ∗ international conference on detection of intrusions and malware, and vulnerability assessment. pp. 192- 211 ,(2014) , 10.1007/978-3-319-08509-8_11
Sandeep Yadav, A. L. Narasimha Reddy, Winning with DNS Failures: Strategies for Faster Botnet Detection Lecture Notes of the Institute for Computer Sciences, Social Informatics and Telecommunications Engineering. pp. 446- 459 ,(2012) , 10.1007/978-3-642-31909-9_26
Roberto Perdisci, David Dagon, Yacin Nadji, Manos Antonakakis, Nikolaos Vasiloglou, Wenke Lee, Saeed Abu-Nimeh, From throw-away traffic to bots: detecting the rise of DGA-based malware usenix security symposium. pp. 24- 24 ,(2012)
Jaeyeon Jung, V. Paxson, A.W. Berger, H. Balakrishnan, Fast portscan detection using sequential hypothesis testing ieee symposium on security and privacy. pp. 211- 225 ,(2004) , 10.1109/SECPRI.2004.1301325
Leyla Bilge, Engin Kirda, Christopher Kruegel, Marco Balduzzi, EXPOSURE : Finding malicious domains using passive DNS analysis network and distributed system security symposium. ,(2011)
Pratyusa Manadhata, Sandeep Yadav, Prasad Rao, William Horne, None, Detecting Malicious Domains via Graph Inference european symposium on research in computer security. pp. 59- 60 ,(2014) , 10.1145/2666652.2666659
Yacin Nadji, David Dagon, Wenke Lee, Yizheng Chen, Manos Antonakakis, Roberto Perdisci, DNS Noise: Measuring the Pervasiveness of Disposable Domains in Modern DNS Traffic dependable systems and networks. pp. 598- 609 ,(2014) , 10.1109/DSN.2014.61
Reza Sharifnya, Mahdi Abadi, DFBotKiller: Domain-flux botnet detection based on the history of group activities and failures in DNS traffic Digital Investigation. ,vol. 12, pp. 15- 26 ,(2015) , 10.1016/J.DIIN.2014.11.001
Srinivas Krishnan, Teryl Taylor, Fabian Monrose, John McHugh, Crossing the threshold: Detecting network malfeasance via sequential hypothesis testing dependable systems and networks. pp. 1- 12 ,(2013) , 10.1109/DSN.2013.6575364