Detecting Botnets Behaviors over Network Flows using Hidden Markov Models

From LRDE

Revision as of 21:42, 30 January 2020 by Bot (talk | contribs) (Created page with "{{CSIReport | authors = Antoine Sainson | title = Detecting Botnets Behaviors over Network Flows using Hidden Markov Models | year = 2020 | number = 2013 | abstract = Botnets...")
(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)
Authors
Antoine Sainson
Type
techreport
Year
2020
Number
2013

Abstract

Botnets are one of the most common and powerful cyber attacks tools, from DDoS attacks to crypto currencies mining. Due to the extreme diversity of Botnets types and interactions, it is very difficult to detect their influence using pay-load data only. Within this context, the goal is to build a Botnets detection system using metadata information from network flows. To do so, we propose a new system based on probabilistic machine learning techniques using Hidden Markov Models to model interactions inside of suspicious networks. Our work is based on a dataset from the Stratosphere project released in 2014.

Retrieved from "https://www.lrde.epita.fr/index.php?title=Publications/sainson.20.seminar&oldid=124803"