Study of DNS Based On the Command and Control
نویسنده
چکیده
Attackers, in particular botnet controllers, use secret messaging systems to set up large-scale command and control. In order to systematically understand the potential capability of attackers, we investigate the practicable of using domain name service (DNS) as a stealthy botnet command-and-control channel. We explain and quantitatively analyze several techniques that can be used to effectively hide malicious DNS activities at the network level. Our experimental result makes use of a two-month-long 4.8GB campus network dataset and 1 million domain names obtained from alexa.com. We conclude that the DNS-based secret command-and-control channel (in particular the code word mode) can be very powerful for attackers, showing the requirement for further research by defenders in this direction. The resulting statistical analysis of DNS payload as a countermeasure has practical limitations inhibiting its large-scale deployment.
منابع مشابه
Detecting Active Bot Networks Based on DNS Traffic Analysis
Abstract—One of the serious threats to cyberspace is the Bot networks or Botnets. Bots are malicious software that acts as a network and allows hackers to remotely manage and control infected computer victims. Given the fact that DNS is one of the most common protocols in the network and is essential for the proper functioning of the network, it is very useful for monitoring, detecting and redu...
متن کاملEffects of Dynamic Neuromuscular Stabilization and Aquatic Exercises on the Pain, Disability, Lumbopelvic Control, and Spinal Posture of Patients With Non-specific Low Back Pain
Objectives: Using an exercise intervention to improve lumbopelvic control (LPC) can enhance the pain severity and disability of participants with non-specific low back pain (NSLBP). The present study aimed to compare dynamic neuromuscular stabilization (DNS) exercises and common aquatic exercises (AEs) in terms of improving the pain, disability, LPC, and spinal posture of patients with non-spec...
متن کاملA Comparative Study of the “Ideal Observer” in Meta-ethics and the “Divine Command” Theory
The two theories of “ideal observer” and “divine command” are theories on constructionism and voluntarism. According to the ideal theory, ethical realities are defined based on the attitudes of the assumed ideal observers and the foundation of these theories is formed on negation of the independent ethical realities. Therefore, existence of independent and evident ethical realities based on whi...
متن کاملIncremental Predictive Command of Velocity to Be Gained Guidance Method
In this paper, a new incremental predictive guidance method based on implicit form of velocity to be gained algorithm is proposed. In this approach, the generalized incremental predictive control (GIPC) approach is applied to the linearized model for compensating the guidance error. Instead of using the present state in popular model based predictive controller (MPC), in the new method both pre...
متن کاملEfficacy of Dynamic Neuromuscular Stabilization Breathing Exercises on Chest Mobility, Trunk Muscles, and Thoracic Kyphosis: A Randomized Controlled 6-Week Trial
Objectives: Dynamic Neuromuscular Stabilization (DNS) approach evaluates and activates the spinal stabilizers to optimize the performance of posture and respiratory system. This study investigated the effects of DNS breathing exercises on upper and lower chest wall mobility (UCM and LCM), trunk extensor endurance, and thoracic kyphosis in a group of sedentary students with poor posture. Method...
متن کامل