Botnets provide the basis for various cyber-threats. However, setting up a complex botnet infrastructure often involves registration of domain names in the domain name system (DNS). Active as well as passive monitoring approaches can be used in the detection of domains that are registered for botnets and other malicious activities. We present a novel architecture for proactive botent detection and defense based on large-scale DNS measurement and smart pattern recognition using machine learning.
|Number of pages||1|
|Publication status||Published - Apr 2016|
- Active and Passive Measurement
- Internet Threats
- Detection and Defence
- Machine Learning