Rule-Based Approach For Detecting Botnet Based On Domain Name System

Alieyan, Kamal Ibrahim Ahmed (2018) Rule-Based Approach For Detecting Botnet Based On Domain Name System. PhD thesis, Universiti Sains Malaysia.

[img]
Preview
PDF
Download (486kB) | Preview

Abstract

Botnets are a serious problem in today’s Internet, and they result in economic damage for organizations and individuals. Botnets consist of thousands of infected hosts that receive instructions from command and control (C&C) servers operated by an individual. Traditionally, Internet Relay Chat (IRC) servers are used as C&C servers and communicate with the botnet through IRC channels. As a result, network administrators often block IRC traffic on their networks. Recent trends in botnet development have seen the use of alternative communication channels, such as domain name server (DNS), between the C&C servers and infected hosts (bots).

Item Type: Thesis (PhD)
Subjects: Q Science > QA Mathematics > QA75.5-76.95 Electronic computers. Computer science
Divisions: Pusat IPv6 Termaju Negara (National Advanced IPv6 Centre of Excellence NAv6) > Thesis
Depositing User: ASM Ab Shukor Mustapa
Date Deposited: 14 Mar 2019 02:50
Last Modified: 12 Apr 2019 05:24
URI: http://eprints.usm.my/id/eprint/43654

Actions (login required)

View Item View Item
Share