Botnets-Reference-Cited by-同舟云学术

Botnets

Published:2014 Issue: Volume: Page:204-223
ISSN:1948-9730
Container-title:Network Security Technologies
language:
Short-container-title:

Author:

Binsalleeh Hamad¹

Affiliation:

1. Concordia University, USA

Abstract

Recent malicious attempts are intended to get financial benefits through a large pool of compromised hosts, which are called software robots or simply bots. A group of bots, referred to as a botnet, is remotely controllable by a server and can be used for sending spam emails, stealing personal information, and launching DDoS attacks. Growing popularity of botnets compels to find proper countermeasures, but existing defense mechanisms hardly catch up with the speed of botnet technologies. Bots are constantly and automatically changing their signatures to successfully avoid the detection. Therefore, it is necessary to analyze the weaknesses of existing defense mechanisms to find the gap and then design new framework of botnet detection that integrates effective approaches. To get a deep insight into the inner-working of botnets and to understand their architecture, the authors analyze some sophisticated sample botnets. In this chapter, they propose a comprehensive botnet analysis and reporting framework that is based on sound theoretical background.

Publisher

IGI Global

Reference93 articles.

1. Abu Rajab, M., Zarfoss, J., Monrose, F., & Terzis, A. (2006). A multifaceted approach to understanding the botnet phenomenon. In IMC’06: Proceedings of the 6th ACM SIGCOMM Conference on internetInternet Measurement (pp. 41–52). New York, NY, USA: ACM.

2. Akiyama, M., Kawamoto, T., Shimamura, M., Yokoyama, T., Kadobayashi, Y., & Yamaguchi, S. (2007). A proposal of metrics for botnet detection based on its cooperative behavior. In Saint ’07: Proceedings of the 2007 International Symposium on Applications and the internetInternet Workshops. Washington, DC, USA: IEEE Computer Society.

3. Al-Hammadi, Y., & Aickelin, U. (2006). Detecting botnets through log correlation. Paper presented at In the Workshop on Monitoring, Attack Detection and Mitigation. New York, NY.

4. Anagnostakis, K. G., Sidiroglou, S., Akritidis, P., Xinidis, K., Markatos, E., & Keromytis, A. D. (2005). Detecting targeted attacks using shadow honeypots. In SSYM’05: Proceedings of the 14th Conference on USENIX Security Symposium. Berkeley, CA, USA: USENIX Association.

5. Anestis, K., Brian, R., & David, H. (2007). Wide-scale botnet detection and characterization. In Hotbots’07: Proceedings of the First Conference on First Workshop on Hot Topics in Understanding Botnets. Berkeley, CA, USA: USENIX Association.

Cited by 2 articles. 订阅此论文施引文献订阅此论文施引文献，注册后可以免费订阅5篇论文的施引文献，订阅后可以查看论文全部施引文献

1. NS record History Based Abnormal DNS traffic Detection Considering Adaptive Botnet Communication Blocking;Journal of Information Processing;2020

2. Analysis of DNS TXT Record Usage and Consideration of Botnet Communication Detection;IEICE Transactions on Communications;2018