Eureka AIR delivers breakthrough ideas for toughest innovation challenges, trusted by R&D personnel around the world.

Domain name detection method, device, equipment and readable storage medium

A domain name detection and domain name technology, applied in the information field, can solve problems such as low accuracy

Active Publication Date: 2021-10-29
SANGFOR TECH INC
View PDF6 Cites 1 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

However, in actual application, it is found that the malicious domain name detection method in related technologies has the problem of low accuracy.

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Domain name detection method, device, equipment and readable storage medium
  • Domain name detection method, device, equipment and readable storage medium
  • Domain name detection method, device, equipment and readable storage medium

Examples

Experimental program
Comparison scheme
Effect test

specific Embodiment approach

[0105] Method 1: The attributes of the directed edge include the number of hosts and the similarity of the host; determine the directed edge whose attribute value is less than the threshold in at least two directed edges as the target directed edge, including:

[0106] Step 1. Find out a type of directed edge whose number of hosts and host similarity are lower than the corresponding threshold, and determine this type of directed edge as the target directed edge;

[0107] Step 2: Disconnect the target directed edge to obtain at least one connected branch.

[0108] For ease of description, the above two steps will be described in combination below.

[0109] You can use machine_count and machine_jaccard to cut the directed domain name connection graph, disconnect the directed edges below the specified threshold, and generate connected branches that meet the conditions. This method is mainly aimed at domain name activities with strong patterns such as viruses. Among them, the th...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

The invention discloses a domain name detection method, a device, equipment and a readable storage medium. According to the method, domain name sequences are utilized to construct a directed graph, domain name sequence behaviors, the relation between the sequences and the relation between hosts are mined, and malicious domain name activity detection is carried out. Specifically, firstly, a directed domain name connection graph is constructed based on domain name access sequences of multiple hosts; at least one connectivity branch is then derived based on the directed domain name connectivity graph. The malicious domain name detection is carried out on each connected branch. Therefore, the problem that the domain name sequence cannot be connected due to a random domain name confrontation technology can be solved, missing report and false report are reduced, and the detection accuracy can be improved.

Description

technical field [0001] The present invention relates to the field of information technology, in particular to a domain name detection method, device, equipment and readable storage medium. Background technique [0002] As a popular method of network attack, malicious domain names are often used to fake other standard websites, help viruses and Trojans spread faster, steal user sensitive information, obtain hacker attack instructions, etc., and have a serious impact on users' normal use of the network. [0003] Among the various methods for detecting malicious domain names, domain name co-occurrence is a relatively common and effective detection feature. Most of the detection methods for domain name co-occurrence are to mine malicious domain names through the relationship between domain names before and after known malicious domain names. sequence, and all domain names defined in the sequence of malicious domain names are malicious domain names. However, in actual applicatio...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
Patent Type & Authority Applications(China)
IPC IPC(8): H04L29/06H04L29/12H04L12/24
CPCH04L63/1408H04L63/1425H04L41/142H04L61/4511
Inventor 陈扬雷昕闫凡
Owner SANGFOR TECH INC
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Eureka Blog
Learn More
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic, Popular Technical Reports.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap|About US| Contact US: help@patsnap.com