This research primary focus of this research paper is to identify advanced persistent threats (APTs) by analyzing network’s Domain Name System (DNS) traffic. APTs are highly sophisticated and targeted cyber-attacks that are challenging to detect using on-going typical security measures. The analysis of DNS traffic is an effective approach to identify APTs, as it reveals unusual communication patterns between the attacker and the victim. This paper discusses various techniques and tools that can be used for DNS analysis and presents a case study that highlights the effectiveness of this approach in detecting APTs. The research findings indicate that DNS analysis could be an essential addition to the existing security measures to safeguard against APTs.

错误:搜索内容不能为空,请输入英文关键词
错误:关键词超出字数限制,请精简
高级检索

Uncovering Advanced Persistent Threats via Fuzzy Logic-Based DNS Analysis

  • Shashank Sharma,
  • Shaligram Prajapat,
  • Nitin Naik

摘要

This research primary focus of this research paper is to identify advanced persistent threats (APTs) by analyzing network’s Domain Name System (DNS) traffic. APTs are highly sophisticated and targeted cyber-attacks that are challenging to detect using on-going typical security measures. The analysis of DNS traffic is an effective approach to identify APTs, as it reveals unusual communication patterns between the attacker and the victim. This paper discusses various techniques and tools that can be used for DNS analysis and presents a case study that highlights the effectiveness of this approach in detecting APTs. The research findings indicate that DNS analysis could be an essential addition to the existing security measures to safeguard against APTs.