English
Related papers

Related papers: Identifying and characterizing ZMap scans: a crypt…

200 papers

XMap is an open-source network scanner designed for performing fast Internet-wide IPv4 and IPv6 network research scanning. XMap was initially developed as the research artifact of a paper published at 2021 IEEE/IFIP International Conference…

Cryptography and Security · Computer Science 2026-02-11 Xiang Li , Zixuan Xie , Lu Sun , Yuqi Qiu , Zuyao Xu , Zheli Liu

Since ZMap's debut in 2013, networking and security researchers have used the open-source scanner to write hundreds of research papers that study Internet behavior. In addition, ZMap has been adopted by the security industry to build new…

Cryptography and Security · Computer Science 2024-09-20 Zakir Durumeric , David Adrian , Phillip Stephens , Eric Wustrow , J. Alex Halderman

Port scanning refers to the systematic exploration of networked computing systems. The goal of port scanning is to identify active services and associated information. Although this technique is often employed by malicious actors to locate…

Cryptography and Security · Computer Science 2023-03-21 Jason M. Pittman

Internet-wide scans are a common active measurement approach to study the Internet, e.g., studying security properties or protocol adoption. They involve probing large address ranges (IPv4 or parts of IPv6) for specific ports or protocols.…

Networking and Internet Architecture · Computer Science 2019-01-23 Jan Rüth , Torsten Zimmermann , Oliver Hohlfeld

Large-scale Internet scans are a common method to identify victims of a specific attack. Stateless scanning like in ZMap has been established as an efficient approach to probing at Internet scale. Stateless scans, however, need a second…

Cryptography and Security · Computer Science 2021-10-12 Raphael Hiesgen , Marcin Nawrocki , Alistair King , Alberto Dainotti , Thomas C. Schmidt , Matthias Wählisch

As today's organizational computer networks are ever evolving and becoming more and more complex, finding potential vulnerabilities and conducting security audits has become a crucial element in securing these networks. The first step in…

Cryptography and Security · Computer Science 2017-10-04 Stefan Marksteiner , Harald Lernbeiß , Bernhard Jandl-Scherf

Public networks are exposed to port scans from the Internet. Attackers search for vulnerable services they can exploit. In large scan campaigns, attackers often utilize different machines to perform distributed scans, which impedes their…

Cryptography and Security · Computer Science 2020-12-17 Steffen Haas , Florian Wilkens , Mathias Fischer

While scans of the IPv4 space are ubiquitous, today little is known about scanning activity in the IPv6 Internet. In this work, we present a longitudinal and detailed empirical study on large-scale IPv6 scanning behavior in the Internet,…

Networking and Internet Architecture · Computer Science 2022-10-20 Philipp Richter , Oliver Gasser , Arthur Berger

Port scanning is the process of attempting to connect to various network ports on a computing endpoint to determine which ports are open and which services are running on them. It is a common method used by hackers to identify…

Cryptography and Security · Computer Science 2023-02-01 Jason M. Pittman

With the increasing concern for security in the network, many approaches are laid out that try to protect the network from unauthorised access. New methods have been adopted in order to find the potential discrepancies that may damage the…

Cryptography and Security · Computer Science 2014-03-28 Sheetal Bairwa , Bhawna Mewara , Jyoti Gajrani

Fast large-scale network scanning is an important way to understand internet service configurations and security in real time, among which stateless scan is representative. Existing stateless scanners can perform single-packet scans for…

Networking and Internet Architecture · Computer Science 2024-05-14 Chiyu Chen , Yuliang Lu , Guozheng Yang , Yi Xie , Shasha Guo

One of the key security threats on the Internet are the compromised machines that can be used to launch various security attacks such as spamming and spreading malware, accessing useful information and DDoS. Attackers for spamming activity…

Networking and Internet Architecture · Computer Science 2014-02-11 Rajesh R Chauhan , G S Praveen Kumar

Internet-wide scanning is a commonly used research technique that has helped uncover real-world attacks, find cryptographic weaknesses, and understand both operator and miscreant behavior. Studies that employ scanning have largely assumed…

Cryptography and Security · Computer Science 2023-01-13 Liz Izhikevich , Renata Teixeira , Zakir Durumeric

Network scanning has been a widely used technique to gather information on the Internet as a whole. The transition from IPv4 to IPv6 causes traditional network scanning to become less useful. An increasing number of hosts is either…

Networking and Internet Architecture · Computer Science 2025-02-26 Nora Bruns

Aggressive network scanners, i.e., ones with immoderate and persistent behaviors, ubiquitously search the Internet to identify insecure and publicly accessible hosts. These scanners generally lie within two main categories; i) benign…

Networking and Internet Architecture · Computer Science 2023-05-15 Aniket Anand , Michalis Kallitsis , Jackson Sippe , Alberto Dainotti

Detecting Domain Name System (DNS) tunneling is a significant challenge in security due to its capacity to hide harmful actions within DNS traffic that appears to be normal and legitimate. Traditional detection methods are based on…

Cryptography and Security · Computer Science 2025-07-15 Novruz Amirov , Baran Isik , Bilal Ihsan Tuncer , Serif Bahtiyar

In this work we identify scanning strategies of IPv6 scanners on the Internet. We offer a unique perspective on the behavior of IPv6 scanners by conducting controlled experiments leveraging a large and unused /56 IPv6 subnet. We selectively…

Networking and Internet Architecture · Computer Science 2022-10-07 Hammas Bin Tanveer , Rachee Singh , Paul Pearce , Rishab Nithyanand

To protect themselves from attacks, networks need to enforce ingress filtering, i.e., block inbound packets sent from spoofed IP addresses. Although this is a widely known best practice, it is still not clear how many networks do not block…

Cryptography and Security · Computer Science 2024-04-17 Tianxiang Dai , Haya Shulman

Active network measurements constitute an impor- tant part in gaining a better understanding of the Internet. Although IPv4-wide scans are now easily possible, random active probing is infeasible in the IPv6 Internet. Therefore, we propose…

Networking and Internet Architecture · Computer Science 2016-07-19 Oliver Gasser , Quirin Scheitle , Sebastian Gebhard , Georg Carle

The machine learning approach is vital in Internet of Things (IoT) malware traffic detection due to its ability to keep pace with the ever-evolving nature of malware. Machine learning algorithms can quickly and accurately analyze the vast…

Cryptography and Security · Computer Science 2023-04-04 Ethan Weitkamp , Yusuke Satani , Adam Omundsen , Jingwen Wang , Peilong Li
‹ Prev 1 2 3 10 Next ›