Supercharge Your Innovation With Domain-Expert AI Agents!

A detection method, medium and electronic equipment of a dga type botnet

A botnet and detection method technology, applied in neural learning methods, biological neural network models, electrical components, etc., can solve the problems of difficulty in ensuring detection accuracy, difficulty in ensuring the comprehensiveness and effectiveness of domain name features, etc., to improve detection accuracy, Guaranteed comprehensiveness and effectiveness

Active Publication Date: 2021-10-15
INST OF COMPUTING TECH CHINESE ACAD OF SCI
View PDF8 Cites 0 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

However, the invention application uses artificial means to extract domain name features, which makes it difficult to ensure the comprehensiveness and effectiveness of domain name features, and also difficult to guarantee detection accuracy

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • A detection method, medium and electronic equipment of a dga type botnet
  • A detection method, medium and electronic equipment of a dga type botnet
  • A detection method, medium and electronic equipment of a dga type botnet

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0029] In order to make the object, technical solution and advantages of the present invention clearer, the present invention will be further described in detail below through specific embodiments in conjunction with the accompanying drawings. It should be understood that the specific embodiments described here are only used to explain the present invention, not to limit the present invention.

[0030]As mentioned in the background technology section, the existing DGA-type botnet detection method based on domain name clustering uses manually extracted domain name features to define the distance between domain names, and then clusters the domain names to achieve detection. It is difficult to guarantee the comprehensiveness and effectiveness of domain name features by using artificial means to extract domain name features, and it is also difficult to guarantee detection accuracy. However, the present invention conducts multiple rounds of supervised learning by importing the trai...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

The embodiment of the present invention provides a detection method, medium and electronic equipment of a DGA type botnet. The detection method includes: B1, performing preprocessing on all domain names in the network to be detected to obtain domain names represented by numerical vectors; B2, converting After preprocessing, the domain name of the network to be detected is input into the deep neural network model, and the domain name depth feature vector of each domain name is extracted; B3. Based on the extracted domain name depth feature vector of each domain name, a clustering algorithm is used according to the The distance clusters the domain names in each network to be detected to determine whether the network to be detected is a DGA-type botnet. The present invention self-learns domain name features in a supervised learning manner by constructing a deep neural network without manual intervention, realizes domain name deep feature extraction, ensures the comprehensiveness and effectiveness of domain name features, and improves detection accuracy.

Description

technical field [0001] The present invention relates to the technical field of botnet detection, in particular to the technical field of DGA-type botnet detection, and more specifically, to a detection method, medium and electronic equipment of a DGA-type botnet. Background technique [0002] Botnet refers to a network in which attackers use zombie viruses to infect a large number of zombie hosts (Bot) and implement one-to-many control through command and control servers (Command and Control Server, C&C Server, C&C server for short). DGA-type botnet is a special botnet that uses Domain Generation Algorithm (DGA) to periodically generate a set of domain names. These domain names are called DGA domain names. If an attacker registers one or more domain names with As the domain name of the C&C server, when the zombie host queries the DNS server for this group of domain names, it will resolve to the IP of the C&C server and connect to the C&C server, thus completing the migration...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
Patent Type & Authority Patents(China)
IPC IPC(8): H04L29/06H04L29/12G06N3/08G06N3/04
CPCH04L63/1408H04L63/1416G06N3/08H04L2463/144H04L61/4511G06N3/044G06N3/045
Inventor 熊威姜海洋
Owner INST OF COMPUTING TECH CHINESE ACAD OF SCI
Features
  • R&D
  • Intellectual Property
  • Life Sciences
  • Materials
  • Tech Scout
Why Patsnap Eureka
  • Unparalleled Data Quality
  • Higher Quality Content
  • 60% Fewer Hallucinations
Social media
Patsnap Eureka Blog
Learn More

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic, Popular Technical Reports.

© 2025 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap|About US| Contact US: help@patsnap.com