English
Related papers

Related papers: Intercepting Hail Hydra: Real-Time Detection of Al…

200 papers

Domain generation algorithms (DGAs) can be categorized into three types: zero-knowledge, partial-knowledge, and full-knowledge. While prior research merely focused on zero-knowledge and full-knowledge types, we characterize their…

Cryptography and Security · Computer Science 2022-12-09 Lihai Nie , Xiaoyang Shan , Laiping Zhao , Keqiu Li

Botnets represent a global problem and are responsible for causing large financial and operational damage to their victims. They are implemented with evasion in mind, and aim at hiding their architecture and authors, making them difficult…

Cryptography and Security · Computer Science 2014-11-03 Pedro Camelo , Joao Moura , Ludwig Krippahl

Modern malware can take various forms, and has reached a very high level of sophistication in terms of its penetration, persistence, communication and hiding capabilities. The use of cryptography, and of covert communication channels over…

Cryptography and Security · Computer Science 2020-01-27 Constantinos Patsakis , Fran Casino

One of the most common causes of lack of continuity of online systems stems from a widely popular Cyber Attack known as Distributed Denial of Service (DDoS), in which a network of infected devices (botnet) gets exploited to flood the…

Cryptography and Security · Computer Science 2022-08-11 Giorgio Piras , Maura Pintor , Luca Demetrio , Battista Biggio

In this work, we conduct a comprehensive study on the robustness of domain generation algorithm (DGA) classifiers. We implement 32 white-box attacks, 19 of which are very effective and induce a false-negative rate (FNR) of $\approx$ 100\%…

Cryptography and Security · Computer Science 2024-04-10 Arthur Drichel , Marc Meyer , Ulrike Meyer

Botnets are now a major source for many network attacks, such as DDoS attacks and spam. However, most traditional detection methods heavily rely on heuristically designed multi-stage detection criteria. In this paper, we consider the neural…

Cryptography and Security · Computer Science 2020-03-16 Jiawei Zhou , Zhiying Xu , Alexander M. Rush , Minlan Yu

Domain Generation Algorithms (DGAs) evolve continuously to evade botnet detection, posing a persistent challenge for dependable network defense. While deep learning-based detectors achieve strong performance under static conditions, they…

Cryptography and Security · Computer Science 2026-05-12 Chaeyoung Lee , Chaeri Jung , Seonghoon Jeong

Mobile devices are frequent targets of eCrime threat actors through SMS spearphishing (smishing) links that leverage Domain Generation Algorithms (DGA) to rotate hostile infrastructure. Despite this, DGA research and evaluation largely…

Cryptography and Security · Computer Science 2026-03-04 Adam Dorian Wong , John D. Hastings

Due to its crucial role in identity and access management in modern enterprise networks, Active Directory (AD) is a top target of Advanced Persistence Threat (APT) actors. Conventional intrusion detection systems (IDS) excel at identifying…

Cryptography and Security · Computer Science 2026-05-01 Qi Liu , Kaibin Bao , Wajih Ul Hassan , Veit Hagenmeyer

The persistent threat posed by malicious domain names in cyber-attacks underscores the urgent need for effective detection mechanisms. Traditional machine learning methods, while capable of identifying such domains, often suffer from high…

Cryptography and Security · Computer Science 2025-02-24 Daiki Chiba , Hiroki Nakano , Takashi Koide

Metaverse is trending to create a digital circumstance that can transfer the real world to an online platform supported by large quantities of real-time interactions. Pre-trained Artificial Intelligence (AI) models are demonstrating their…

Cryptography and Security · Computer Science 2024-01-05 Pengfei Li , Zhibo Zhang , Ameena S. Al-Sumaiti , Naoufel Werghi , Chan Yeob Yeun

This paper proposes a generic classification system designed to detect security threats based on the behavior of malware samples. The system relies on statistical features computed from proxy log fields to train detectors using a database…

Machine Learning · Statistics 2017-02-09 Lukas Machlica , Karel Bartos , Michal Sofka

Domain Name System (DNS) is the backbone of the Internet. However, threat actors have abused the antiquated protocol to facilitate command-and-control (C2) actions, to tunnel, or to exfiltrate sensitive information in novel ways. The…

Cryptography and Security · Computer Science 2023-04-18 Adam Dorian Wong

The Domain Name System (DNS) protocol plays a major role in today's Internet as it translates between website names and corresponding IP addresses. However, due to the lack of processes for data integrity and origin authentication, the DNS…

Cryptography and Security · Computer Science 2020-12-22 Abdallah Moubayed , MohammadNoor Injadat , Abdallah Shami

The goal of Domain Generation Algorithm (DGA) detection is to recognize infections with bot malware and is often done with help of Machine Learning approaches that classify non-resolving Domain Name System (DNS) traffic and are trained on…

Cryptography and Security · Computer Science 2021-10-13 Benedikt Holmes , Arthur Drichel , Ulrike Meyer

Generative adversarial networks have been able to generate striking results in various domains. This generation capability can be general while the networks gain deep understanding regarding the data distribution. In many domains, this data…

Machine Learning · Computer Science 2019-09-16 Milad Salem , Shayan Taheri , Jiann Shiun Yuan

Network Intrusion Detection Systems (NIDS) are tools or software that are widely used to maintain the computer networks and information systems keeping them secure and preventing malicious traffics from penetrating into them, as they flag…

Cryptography and Security · Computer Science 2023-01-02 Abdelmageed Ahmed Hassan , Mohamed Sayed Hussein , Ahmed Shehata AboMoustafa , Sarah Hossam Elmowafy

Domain name system (DNS) is a crucial part of the Internet, yet has been widely exploited by cyber attackers. Apart from making static methods like blacklists or sinkholes infeasible, some weasel attackers can even bypass detection systems…

Cryptography and Security · Computer Science 2019-09-05 Xiaoqing Sun , Mingkai Tong , Jiahai Yang

Recent years have witnessed a rise in the frequency and intensity of cyberattacks targeted at critical infrastructure systems. This study designs a versatile, data-driven cyberattack detection platform for infrastructure systems…

Cryptography and Security · Computer Science 2018-06-01 Sarin E. Chandy , Amin Rasekh , Zachary A. Barker , M. Ehsan Shafiee

Motivated by a recent new type of randomized Distributed Denial of Service (DDoS) attacks on the Domain Name Service (DNS), we develop novel and efficient distinct heavy hitters algorithms and build an attack identification system that uses…

Cryptography and Security · Computer Science 2016-12-09 Yehuda Afek , Anat Bremler-Barr , Edith Cohen , Shir Landau Feibish , Michal Shagam