XG-BoT: An explainable deep graph neural network for botnet detection and forensics
نویسندگان
چکیده
In this paper, we propose XG-BoT, an explainable deep graph neural network model for botnet node detection. The proposed comprises a detector and explainer automatic forensics. XG-BoT can effectively detect malicious nodes in large-scale networks. Specifically, it utilizes grouped reversible residual connection with isomorphism to learn expressive representations from communication graphs. explainer, based on the GNNExplainer saliency map perform forensics by highlighting suspicious flows related nodes. We evaluated using real-world, datasets. Overall, outperforms state-of-the-art approaches terms of key evaluation metrics. Additionally, demonstrate that explainers generate useful explanations
منابع مشابه
Deep Neural Networks for Bot Detection
The problem of detecting bots, automated social media accounts governed by software but disguising as human users, has strong implications. For example, bots have been used to sway political elections by distorting online discourse, to manipulate the stock market, or to push anti-vaccine conspiracy theories that caused health epidemics. Most techniques proposed to date detect bots at the accoun...
متن کاملDesign of Generic Framework for Botnet Detection in Network Forensics
With the raise in practice of Internet, in social, personal, commercial and other aspects of life, the cybercrime is as well escalating at an alarming rate. Such usage of Internet in diversified areas also augmented the illegal activities, which in turn, bids many network attacks and threats. Network forensics is used to detect the network attacks. This can be viewed as the extension of network...
متن کاملBotOnus: an online unsupervised method for Botnet detection
Botnets are recognized as one of the most dangerous threats to the Internet infrastructure. They are used for malicious activities such as launching distributed denial of service attacks, sending spam, and leaking personal information. Existing botnet detection methods produce a number of good ideas, but they are far from complete yet, since most of them cannot detect botnets in an early stage ...
متن کاملAn Effective Model for SMS Spam Detection Using Content-based Features and Averaged Neural Network
In recent years, there has been considerable interest among people to use short message service (SMS) as one of the essential and straightforward communications services on mobile devices. The increased popularity of this service also increased the number of mobile devices attacks such as SMS spam messages. SMS spam messages constitute a real problem to mobile subscribers; this worries telecomm...
متن کاملAttack Graph Analysis for Network Anti-Forensics
The development of technology in computer networks has boosted the percentage of cyber-attacks today. Hackers are now able to penetrate even the strongest IDS and firewalls. With the help of anti-forensic techniques, attackers defend themselves, from being tracked by destroying and distorting evidences. To detect and prevent network attacks, the main modus of operandi in network forensics is th...
متن کاملذخیره در منابع من
با ذخیره ی این منبع در منابع من، دسترسی به آن را برای استفاده های بعدی آسان تر کنید
ژورنال
عنوان ژورنال: Internet of things
سال: 2023
ISSN: ['2199-1081', '2199-1073']
DOI: https://doi.org/10.1016/j.iot.2023.100747