English
Related papers

Related papers: Network Security Modeling using NetFlow Data: Dete…

200 papers

We investigate the detection of botnet command and control (C2) hosts in massive IP traffic using machine learning methods. To this end, we use NetFlow data -- the industry standard for monitoring of IP traffic -- and ML models using two…

Cryptography and Security · Computer Science 2022-11-28 Subhabrata Majumdar , Ganesh Subramaniam

In this paper, we propose a new method for detecting unauthorized network intrusions, based on a traffic flow model and Cisco NetFlow protocol application. The method developed allows us not only to detect the most common types of network…

Cryptography and Security · Computer Science 2017-02-20 Aleksey A. Galtsev , Andrei M. Sukhov

Cybersecurity attacks are growing both in frequency and sophistication over the years. This increasing sophistication and complexity call for more advancement and continuous innovation in defensive strategies. Traditional methods of…

Machine Learning · Computer Science 2020-01-20 Antoine Delplace , Sheryl Hermoso , Kristofer Anandita

Cybersecurity is essential, and attacks are rapidly growing and getting more challenging to detect. The traditional Firewall and Intrusion Detection system, even though it is widely used and recommended but it fails to detect new attacks,…

Cryptography and Security · Computer Science 2021-09-17 Mustafa Sakhai , Maciej Wielgosz

Over the past few decades, Industrial Control Systems (ICSs) have been targeted by cyberattacks and are becoming increasingly vulnerable as more ICSs are connected to the internet. Using Machine Learning (ML) for Intrusion Detection Systems…

Cryptography and Security · Computer Science 2023-05-18 Alireza Dehlaghi-Ghadim , Mahshid Helali Moghadam , Ali Balador , Hans Hansson

Botnets (networks of compromised computers) are often used for malicious activities such as spam, click fraud, identity theft, phishing, and distributed denial of service (DDoS) attacks. Most of previous researches have introduced fully or…

Cryptography and Security · Computer Science 2018-11-05 Sajjad Arshad , Maghsoud Abbaspour , Mehdi Kharrazi , Hooman Sanatkar

A growing issue in the modern cyberspace world is the direct identification of malicious activity over network connections. The boom of the machine learning industry in the past few years has led to the increasing usage of machine learning…

Networking and Internet Architecture · Computer Science 2018-10-05 Jinoh Kim , Caitlin Sim , Jinhwan Choi

In the rapidly evolving landscape of cyber threats targeting the Internet of Things (IoT) ecosystem, and in light of the surge in botnet-driven Distributed Denial of Service (DDoS) and brute force attacks, this study focuses on the early…

Cryptography and Security · Computer Science 2024-07-23 Abdelaziz Amara korba , Aleddine Diaf , Yacine Ghamri-Doudane

Most of the intrusion detection methods in computer networks are based on traffic flow characteristics. However, this approach may not fully exploit the potential of deep learning algorithms to directly extract features and patterns from…

Computer Vision and Pattern Recognition · Computer Science 2025-11-04 Aleksander Ogonowski , Michał Żebrowski , Arkadiusz Ćwiek , Tobiasz Jarosiewicz , Konrad Klimaszewski , Adam Padee , Piotr Wasiuk , Michał Wójcik

IThe botnet is considered as a critical issue of the Internet due to its fast growing mechanism and affect. Recently, Botnets have utilized the DNS and query DNS server just like any legitimate hosts. In this case, it is difficult to…

Networking and Internet Architecture · Computer Science 2009-11-04 Ahmed M. Manasrah , Awsan Hasan , Omar Amer Abouabdalla , Sureswaran Ramadass

With the wide application of IoT and industrial IoT technologies, the network structure is becoming more and more complex, and the traffic scale is growing rapidly, which makes the traditional security protection mechanism face serious…

Computers and Society · Computer Science 2025-04-25 Qiuyan Xiang , Shuang Wu , Dongze Wu , Yuxin Liu , Zhenkai Qin

Traditional intrusion detection systems (IDSs) often rely on either network traffic or process data, but this single-source approach may miss complex attack patterns that span multiple layers within industrial control systems (ICSs) or…

Cryptography and Security · Computer Science 2024-10-28 Vegard Berge , Chunlei Li

Cyberthreats are a permanent concern in our modern technological world. In the recent years, sophisticated traffic analysis techniques and anomaly detection (AD) algorithms have been employed to face the more and more subversive adversarial…

Machine Learning · Computer Science 2022-05-17 Paul Irofti , Andrei Pătraşcu , Andrei Iulian Hîji

Traditional reactive approach of blacklisting botnets fails to adapt to the rapidly evolving landscape of cyberattacks. An automated and proactive approach to detect and block botnet hosts will immensely benefit the industry. Behavioral…

Cryptography and Security · Computer Science 2021-08-31 Farhan Sadique , Shamik Sengupta

Disruption from service caused by DDoS attacks is an immense threat to Internet today. These attacks can disrupt the availability of Internet services completely, by eating either computational or communication resources through sheer…

Cryptography and Security · Computer Science 2012-03-13 B. B. Gupta , Manoj Misra , R. C. Joshi

NetFlow data is a popular network log format used by many network analysts and researchers. The advantages of using NetFlow over deep packet inspection are that it is easier to collect and process, and it is less privacy intrusive. Many…

Machine Learning · Computer Science 2025-01-09 Clinton Cao , Annibale Panichella , Sicco Verwer , Agathe Blaise , Filippo Rebecchi

Botnet is most widespread and occurs commonly in today's cyber attacks, resulting in serious threats to our network assets and organization's properties. Botnets are collections of compromised computers (Bots) which are remotely controlled…

Cryptography and Security · Computer Science 2010-04-09 Hossein Rouhani Zeidanloo , Azizah Bt Abdul Manaf

Cyber-attacks continue to grow, both in terms of volume and sophistication. This is aided by an increase in available computational power, expanding attack surfaces, and advancements in the human understanding of how to make attacks…

Cryptography and Security · Computer Science 2021-03-09 Hanan Hindy , Robert Atkinson , Christos Tachtatzis , Ethan Bayne , Miroslav Bures , Xavier Bellekens

This paper investigates the temporal analysis of NetFlow datasets for machine learning (ML)-based network intrusion detection systems (NIDS). Although many previous studies have highlighted the critical role of temporal features, such as…

Machine Learning · Computer Science 2026-05-01 Majed Luay , Siamak Layeghy , Seyedehfaezeh Hosseininoorbin , Mohanad Sarhan , Nour Moustafa , Marius Portmann

This paper presents our simulation of cyber-attacks and detection strategies on the traffic control system in Daytona Beach, FL. using Raspberry Pi virtual machines and the OPNSense firewall, along with traffic dynamics from SUMO and…

‹ Prev 1 2 3 10 Next ›