DNS tunnel detection method and DNS tunnel detection device
A technology of DNS tunnel and detection device, applied in the Internet field, can solve the problem of not being a DNS tunnel defense method, etc.
- Summary
- Abstract
- Description
- Claims
- Application Information
AI Technical Summary
Problems solved by technology
Method used
Image
Examples
Embodiment Construction
[0070] This embodiment provides a DNS tunnel detection method, the following combination figure 1 As shown, the specific steps of the DNS tunnel detection method are described in detail.
[0071] Step 101, acquiring passive DNS data.
[0072] The Passive DNS data shown in this embodiment is a technique for recording authoritative DNS resolution result resource records by analyzing communication between DNS servers.
[0073] Passive DNS data is very commonly used in malware analysis, and Passive DNS data does not contain DNS tunnel client information to avoid infringement of user privacy. Therefore, many companies and institutions in the world have carried out PassiveDNS database construction and data sharing.
[0074] The method shown in this embodiment is based on the analysis of Passive DNS data, does not involve client user information, fully protects the privacy of users, and Passive DNS data can be exchanged with the data sources of multiple companies in the world, and c...
PUM
Abstract
Description
Claims
Application Information
- R&D Engineer
- R&D Manager
- IP Professional
- Industry Leading Data Capabilities
- Powerful AI technology
- Patent DNA Extraction
Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic, Popular Technical Reports.
© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap|About US| Contact US: help@patsnap.com