DGA domain name detection method and system, electronic equipment and storage medium
A domain name detection and full domain name technology, applied in the field of information security, can solve problems such as limited information utilization ability and feature extraction ability, affecting test accuracy, and indistinguishable authenticity, etc., to achieve easy variable-length sequence input and low computing power requirements Effect
Active Publication Date: 2022-06-24
北京中科网威信息技术有限公司
View PDF6 Cites 0 Cited by
- Summary
- Abstract
- Description
- Claims
- Application Information
AI Technical Summary
Problems solved by technology
The current method still has shortcomings: the training data sets of the model are all obtained from the network, and the authenticity cannot be distinguished, which affects the test accuracy; the classification model is relatively simple, and the information utilization and feature extraction capabilities of short texts such as domain names are limited, especially in In the multi-classification problem of DGA domain name, the classification accuracy still has a large room for improvement
Method used
the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View moreImage
Smart Image Click on the blue labels to locate them in the text.
Smart ImageViewing Examples
Examples
Experimental program
Comparison scheme
Effect test
Embodiment Construction
[0055] In order to make the objectives, technical solutions and advantages of the present invention clearer, the technical solutions in the present invention will be clearly and completely described below with reference to the accompanying drawings. Obviously, the described embodiments are part of the embodiments of the present invention. , not all examples. Based on the embodiments of the present invention, all other embodiments obtained by those of ordinary skill in the art without creative efforts shall fall within the protection scope of the present invention.
[0056] figure 1 A schematic diagram of the DGA domain name detection method provided by the present invention, such as figure 1 As shown, the method includes:
[0057] Perform variable-length preprocessing and fixed-length preprocessing on the input global domain name string sequence respectively, and the variable-length preprocessing includes adding a single terminator at the end of the global domain name string...
the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More PUM
Login to View More Abstract
The invention provides a DGA domain name detection method and system, electronic equipment and a storage medium. The method comprises the following steps: respectively carrying out variable-length preprocessing and fixed-length preprocessing on an input full domain name character string sequence; the variable-length sequence or the fixed-length sequence is input into a first preset model, a first prediction result is output, and the first prediction result comprises N first numerical values; the fixed-length sequence is input into a second preset model, a second prediction result is output, the second prediction result comprises N second numerical values, and N is a positive integer; and selecting a DGA domain name detection result from a first prediction result and a second prediction result based on evaluation indexes of the first prediction result output by the first preset model and the second prediction result output by the second preset model. According to the DGA domain name detection method based on deep learning, the domain name character string sequence is input, the DGA domain name detection result is output through the deep learning model, and the method has the advantages of being real-time, lightweight, multi-classification detection, high in classification precision and the like.
Description
technical field [0001] The invention relates to the technical field of information security, in particular to a DGA domain name detection method and system, an electronic device and a storage medium. Background technique [0002] Malware has now become the No. 1 public enemy that threatens network security. In order to evade detection by security facilities, its production process is becoming more and more complicated. A typical method is to integrate DGA (Domain Generation Algorithm, domain name generation method) into the software. DGA is an automatic generation method of domain name strings, similar to the pseudo-random number generation method, which can continuously run to generate non-repeated domain name string sequences. The method runs simultaneously on the malicious program terminal (victim personal device, botnet terminal) and the malicious program control center in the same initial state, so that both parties obtain the same generated domain name sequence; when t...
Claims
the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More Application Information
Patent Timeline
Login to View More Patent Type & Authority Applications(China)
IPC IPC(8): H04L9/40H04L61/4511G06N3/04G06N3/08
CPCH04L63/0236H04L63/1408G06N3/08H04L63/101G06N3/045
Inventor 严仑赵述芳张坤
Owner 北京中科网威信息技术有限公司