Abstract

Fast-flux service networks (FFSN) helps the cyber-criminals to hide the servers used for malicious activities behind a wall of proxies (bots). It provides the reliability and detection evasion to a malicious server. FFSN use a large pool of IP addresses for proxies. Detection of FFSN is difficult as few benign technologies like Content distribution networks and round robin DNS have similar working characteristics. Many approaches have been proposed to detect FFSN and fast flux domains. However, due to dynamic behavior of FFSN, these techniques suffer from a significant number of false positives. In this paper, we present a Temporal and Real time detections based approach (TempR) to detect fast flux domains. The features of fast flux domains and benign domains have been collected and classified using intelligent classifiers. Our technique illustrates 96.99% detection accuracy with the recent behavior of fast flux domains.

Talk to us

Join us for a 30 min session where you can share your feedback and ask us any queries you have

Schedule a call

Similar Papers

Paper Title
Journal
Date
Author
Fast Flux Service Network Detection via Data Mining on Passive DNS Traffic
Pierangelo Lombardo ... Federica Bisio
-
Pierangelo Lombardo, et. al.Pierangelo Lombardo ... Federica Bisio
01 Jan 2018
Behavioral analysis of fast flux service networks
Alper Caglayan ... Mike Toothaker
-
Alper Caglayan, et. al.Alper Caglayan ... Mike Toothaker
13 Apr 2009
PASSVM: A highly accurate fast flux detection system
Basheer Al-Duwairi ... Ahmed S Shatnawi
Computers & Security | VOL. 110
Basheer Al-Duwairi, et. al.Basheer Al-Duwairi ... Ahmed S Shatnawi
09 Aug 2021
Botnet Attack Detection Using A Hybrid Supervised Fast-Flux Killer System
Ahmad Al-Nawasrah ... Ammar Almomani
Journal of Web Engineering | VOL. -
Ahmad Al-Nawasrah, et. al.Ahmad Al-Nawasrah ... Ammar Almomani
30 Dec 2021
View more papers

More From: International Journal of Computer Network and Information Security

Paper Title
Journal
Date
Author
Joint Decoding Technique for Collision Resolution in Non-orthogonal Multiple Access Environment
Suprith P G ... Mithileysh Sathiyanarayanan
International Journal of Computer Network and Information Security | VOL. 16
Suprith P G, et. al.Suprith P G ... Mithileysh Sathiyanarayanan
08 Oct 2024
Traffic Engineering with Specified Quality of Service Parameters in Software-defined Networks
Artem Volokyta ... Dmytro Korenko
International Journal of Computer Network and Information Security | VOL. 16
Artem Volokyta, et. al.Artem Volokyta ... Dmytro Korenko
08 Oct 2024
-
-
International Journal of Computer Network and Information Security | VOL. 16
--
08 Oct 2024
A Novel Model for Protecting the Privacy of Digital Images in Cloud Using Permutated Fragmentation and Encryption Algorithms
Ahmed Y Mahmoud ... Mohammed Ibraheem Al Kahlout
International Journal of Computer Network and Information Security | VOL. 16
Ahmed Y Mahmoud, et. al.Ahmed Y Mahmoud ... Mohammed Ibraheem Al Kahlout
08 Oct 2024
View more papers

Disclaimer: All third-party content on this website/platform is and will remain the property of their respective owners and is provided on "as is" basis without any warranties, express or implied. Use of third-party content does not indicate any affiliation, sponsorship with or endorsement by them. Any references to third-party content is to identify the corresponding services and shall be considered fair use under The CopyrightLaw.