Robust Botnet DGA Detection: Blending XAI and OSINT for Cyber Threat Intelligence Sharing

Robust Botnet DGA Detection: Blending XAI and OSINT for Cyber Threat Intelligence Sharing

We investigated 12 years DNS query logs of our campus network and identified phenomena of malicious botnet domain generation algorithm (DGA) traffic. DGA-based botnets are difficult to detect using cyber threat intelligence (CTI) systems based on blocklists. Artificial intelligence (AI)/machine lear...

Full description

Bibliographic Details
Main Authors:	Hatma Suryotrisongko, Yasuo Musashi, Akio Tsuneda, Kenichi Sugitani
Format:	Article
Language:	English
Published:	IEEE 2022-01-01
Series:	IEEE Access
Subjects:	Adversarial machine learning botnet cybersecurity DGA explainable artificial intelligence threat intelligence
Online Access:	https://ieeexplore.ieee.org/document/9743448/

Similar Items

DGA-based botnets detection using DNS traffic mining
by: Ahmed M. Manasrah, et al.
Published: (2022-05-01)

Detection of DGA-Generated Domain Names with TF-IDF
by: Harald Vranken, et al.
Published: (2022-01-01)

SHAP Interpretations of Tree and Neural Network DNS Classifiers for Analyzing DGA Family Characteristics
by: Nikos Kostopoulos, et al.
Published: (2023-01-01)

Inline Detection of DGA Domains Using Side Information
by: Raaghavi Sivaguru, et al.
Published: (2020-01-01)

Analysis of Botnet Domain Names for IoT Cybersecurity
by: Wanting Li, et al.
Published: (2019-01-01)

TI-16 DNS Labeled Dataset for Detecting Botnets
by: Manmeet Singh, et al.
Published: (2023-01-01)

AIBot: A Novel Botnet Capable of Performing Distributed Artificial Intelligence Computing
by: Hao Zhao, et al.
Published: (2022-10-01)

Botnet Detection Approach Using Graph-Based Machine Learning
by: Afnan Alharbi, et al.
Published: (2021-01-01)

Cyber Threat Intelligence on Blockchain: A Systematic Literature Review
by: Dimitrios Chatziamanetoglou, et al.
Published: (2024-02-01)

A Survey on Botnets, Issues, Threats, Methods, Detection and Prevention
by: Harry Owen, et al.
Published: (2022-02-01)

Private Enforcement for the DSA/DGA/DMA Package
by: Peter Picht

IoT Botnet Anomaly Detection Using Unsupervised Deep Learning
by: Ioana Apostol, et al.
Published: (2021-08-01)

Explainable Artificial Intelligence in CyberSecurity: A Survey
by: Nicola Capuano, et al.
Published: (2022-01-01)

SMOTE-DRNN: A Deep Learning Algorithm for Botnet Detection in the Internet-of-Things Networks
by: Segun I. Popoola, et al.
Published: (2021-04-01)

A Blockchain-Enabled Secure Digital Twin Framework for Early Botnet Detection in IIoT Environment
by: Mikail Mohammed Salim, et al.
Published: (2022-08-01)

Cybersecurity Knowledge Extraction Using XAI
by: Ana Šarčević, et al.
Published: (2022-08-01)

Security Hardening of Botnet Detectors Using Generative Adversarial Networks
by: Rizwan Hamid Randhawa, et al.
Published: (2021-01-01)

Applications of Artificial Intelligence to Detect Android Botnets: A Survey
by: Abdullah M. Almuhaideb, et al.
Published: (2022-01-01)

Cyberpsychology: A Longitudinal Analysis of Cyber Adversarial Tactics and Techniques
by: Marshall S. Rich
Published: (2023-08-01)

IoT Botnet Detection Using Various One-Class Classifiers
by: Mehedi Hasan Raj, et al.
Published: (2021-05-01)

Hybrid Metaheuristics With Machine Learning Based Botnet Detection in Cloud Assisted Internet of Things Environment
by: Latifah Almuqren, et al.
Published: (2023-01-01)

Review OSINT tool for social engineering
by: Martina Nobili
Published: (2023-09-01)

Memory-Efficient Deep Learning for Botnet Attack Detection in IoT Networks
by: Segun I. Popoola, et al.
Published: (2021-05-01)

Explainable Artificial Intelligence (XAI): Concepts and Challenges in Healthcare
by: Tim Hulsen
Published: (2023-08-01)

Modeling of Botnet Detection Using Barnacles Mating Optimizer with Machine Learning Model for Internet of Things Environment
by: Fatma S. Alrayes, et al.
Published: (2022-10-01)

A Systematic Literature Review on Cyber Threat Intelligence for Organizational Cybersecurity Resilience
by: Saqib Saeed, et al.
Published: (2023-08-01)

CYBER THREAT INTELLIGENCE AS A NEW PHENOMENON: LEGAL ASPECT
by: Iryna Sopilko
Published: (2022-03-01)

APPLICATION OF THE THREAT INTELLIGENCE PLATFORM TO INCREASE THE SECURITY OF GOVERNMENT INFORMATION RESOURCES
by: Bohdan Nikolaienko, et al.
Published: (2021-12-01)

A Shared Cyber Threat Intelligence Solution for SMEs
by: Max van Haastrecht, et al.
Published: (2021-11-01)

A Comparison Study of Generative Adversarial Network Architectures for Malicious Cyber-Attack Data Generation
by: Nikolaos Peppes, et al.
Published: (2023-06-01)

A Botnets Circumspection: The Current Threat Landscape, and What We Know So Far
by: Emmanuel C. Ogu, et al.
Published: (2019-10-01)

A Deep Learning Method for Lightweight and Cross-Device IoT Botnet Detection
by: Marta Catillo, et al.
Published: (2023-01-01)

DGA Domain Name Classification Method Based on Long Short-Term Memory with Attention Mechanism
by: Yanchen Qiao, et al.
Published: (2019-10-01)

DReLAB - Deep REinforcement Learning Adversarial Botnet: A benchmark dataset for adversarial attacks against botnet Intrusion Detection Systems
by: Andrea Venturi, et al.
Published: (2021-02-01)

A Two-Fold Machine Learning Approach to Prevent and Detect IoT Botnet Attacks
by: Faisal Hussain, et al.
Published: (2021-01-01)

Botnet Defense System: Observability, Controllability, and Basic Command and Control Strategy
by: Shingo Yamaguchi
Published: (2022-12-01)

XSMILES: interactive visualization for molecules, SMILES and XAI attribution scores
by: Henry Heberle, et al.
Published: (2023-01-01)

Evaluating Awareness and Perception of Botnet Activity within Consumer Internet-of-Things (IoT) Networks
by: Christopher D. McDermott, et al.
Published: (2019-02-01)

Accuracy Improvement of Transformer Faults Diagnostic Based on DGA Data Using SVM-BA Classifier
by: Youcef Benmahamed, et al.
Published: (2021-05-01)

Unveiling Shadows: Harnessing Artificial Intelligence for Insider Threat Detection
by: Erhan Yilmaz, et al.
Published: (2024-04-01)