English
Related papers

Related papers: Combating Malicious DNS Tunnel

200 papers

Detecting Domain Name System (DNS) tunneling is a significant challenge in security due to its capacity to hide harmful actions within DNS traffic that appears to be normal and legitimate. Traditional detection methods are based on…

Cryptography and Security · Computer Science 2025-07-15 Novruz Amirov , Baran Isik , Bilal Ihsan Tuncer , Serif Bahtiyar

Domain Name Service is a trusted protocol made for name resolution, but during past years some approaches have been developed to use it for data transfer. DNS Tunneling is a method where data is encoded inside DNS queries, allowing…

Cryptography and Security · Computer Science 2020-06-16 Franco Palau , Carlos Catania , Jorge Guerra , Sebastian Garcia , Maria Rigaki

Malicious domains are one of the major resources required for adversaries to run attacks over the Internet. Due to the important role of the Domain Name System (DNS), extensive research has been conducted to identify malicious domains based…

Cryptography and Security · Computer Science 2018-12-04 Yury Zhauniarovich , Issa Khalil , Ting Yu , Marc Dacier

In the presence of security countermeasures, a malware designed for data exfiltration must do so using a covert channel to achieve its goal. Among existing covert channels stands the domain name system (DNS) protocol. Although the detection…

Cryptography and Security · Computer Science 2018-06-19 Asaf Nadler , Avi Aminov , Asaf Shabtai

In recent years, malware with tunneling (or: covert channel) capabilities is on the rise. While malware research led to several methods and innovations, the detection and differentiation of malware solely based on its DNS tunneling features…

Cryptography and Security · Computer Science 2025-11-20 Denis Petrov , Pascal Ruffing , Sebastian Zillien , Steffen Wendzel

The Domain Name System (DNS) is a core Internet service that translates domain names into IP addresses. It is a distributed database and protocol with many known weaknesses that subject to countless attacks including spoofing attacks,…

Cryptography and Security · Computer Science 2022-11-16 Alshaima Almarzooqi , Jawahir Mahmoud , Bayena Alzaabi , Arsiema Ghebremichael , Monther Aldwairi

A safe and secure Domain Name System (DNS) is of paramount importance for the digital economy and society. Malicious activities on the DNS, generally referred to as "DNS abuse" are frequent and severe problems affecting online security and…

Cryptography and Security · Computer Science 2022-12-20 Jan Bayer , Yevheniya Nosyk , Olivier Hureau , Simon Fernandez , Ivett Paulovics , Andrzej Duda , Maciej Korczyński

We perform a passive measurement study investigating how a Protective DNS service might perform in a Research & Education Network serving hundreds of member institutions. Utilizing freely-available DNS blocklists consisting of domain names…

Cryptography and Security · Computer Science 2025-10-30 David Plonka , Branden Palacio , Debbie Perouli

Domain name system (DNS) is a crucial part of the Internet, yet has been widely exploited by cyber attackers. Apart from making static methods like blacklists or sinkholes infeasible, some weasel attackers can even bypass detection systems…

Cryptography and Security · Computer Science 2019-09-05 Xiaoqing Sun , Mingkai Tong , Jiahai Yang

DNS is a distributed, fault tolerant system that avoids a single point of failure. As such it is an integral part of the internet as we use it today and hence deemed a safe protocol which is let through firewalls and proxies with no or…

Cryptography and Security · Computer Science 2019-06-28 Andreas Berg , Daniel Forsberg

The Domain Name System (DNS) provides a translation between readable domain names and IP addresses. The DNS is a key infrastructure component of the Internet and a prime target for a variety of attacks. One of the most significant threat to…

Cryptography and Security · Computer Science 2019-06-27 Harel Berger , Amit Z. Dvir , Moti Geva

The Domain Name System (DNS) comprises name servers translating domain names into, commonly, IP addresses. Authoritative name servers hosts the resource records (RR) for certain zones, and resolver name servers are responsible for querying…

Cryptography and Security · Computer Science 2024-01-09 Jonathan Magnusson

One of the most critical components of the Internet that an attacker could exploit is the DNS (Domain Name System) protocol and infrastructure. Researchers have been constantly developing methods to detect and defend against the attacks…

Networking and Internet Architecture · Computer Science 2024-10-04 Abdullah Aydeger , Pei Zhou , Sanzida Hoque , Marco Carvalho , Engin Zeydan

The Domain Name System (DNS) was created to resolve the IP addresses of the web servers to easily remembered names. When it was initially created, security was not a major concern; nowadays, this lack of inherent security and trust has…

Cryptography and Security · Computer Science 2020-08-17 Pavlos Papadopoulos , Nikolaos Pitropakis , William J. Buchanan , Owen Lo , Sokratis Katsikas

Malicious URL, a.k.a. malicious website, is a common and serious threat to cybersecurity. Malicious URLs host unsolicited content (spam, phishing, drive-by exploits, etc.) and lure unsuspecting users to become victims of scams (monetary…

Machine Learning · Computer Science 2019-08-22 Doyen Sahoo , Chenghao Liu , Steven C. H. Hoi

Anonymous communication systems are subject to selective denial-of-service (DoS) attacks. Selective DoS attacks lower anonymity as they force paths to be rebuilt multiple times to ensure delivery which increases the opportunity for more…

Cryptography and Security · Computer Science 2015-03-19 Anupam Das , Nikita Borisov

Encrypted tunneling protocols are widely used. Beyond business and personal uses, malicious actors also deploy tunneling to hinder the detection of Command and Control and data exfiltration. A common approach to maintain visibility on…

Cryptography and Security · Computer Science 2022-01-26 Johan Mazel , Matthieu Saudrais , Antoine Hervieu

Spam domains are sources of unsolicited mails and one of the primary vehicles for fraud and malicious activities such as phishing campaigns or malware distribution. Spam domain detection is a race: as soon as the spam mails are sent, taking…

Cryptography and Security · Computer Science 2022-05-05 Simon Fernandez , Maciej Korczyński , Andrzej Duda

Distributed Denial-of-Service (DDoS) attacks exhaust resources, leaving a server unavailable to legitimate clients. The Domain Name System (DNS) is a frequent target of DDoS attacks. Since DNS is a critical infrastructure service,…

Cryptography and Security · Computer Science 2022-09-16 A S M Rizvi , Jelena Mirkovic , John Heidemann , Wesley Hardaker , Robert Story

The domain name system (DNS) that maps alphabetic names to numeric Internet Protocol (IP) addresses plays a foundational role for Internet communications. By default, DNS queries and responses are exchanged in unencrypted plaintext, and…

Cryptography and Security · Computer Science 2024-07-08 Minzhao Lyu , Hassan Habibi Gharakheili , Vijay Sivaraman
‹ Prev 1 2 3 10 Next ›