The full text of this article/chapter:
Investigation of peer-to-peer botnet using TCP control packets and data mining techniques
by Mohammad Aluthaman, Nauman Aslam, M.A. Hossain, Rafe Alasem
Software, Knowledge, Information Management and Applications (SKIMA 2013) (SKIMA2013), Vol. 9, No. 1, 2013
Abstract: Nowadays botnets are commonly used in cyber-attacks and malicious activities. A botnet is the main way to carry and spread many malicious codes in internet that are responsible for many malicious activities including spam mail, distributed denial of service attack and click fraud. In this paper, we propose an approach to detect botnet’s malicious behavior by using data mining classification techniques based on the features of TCP control packet. We study the performance and accuracy of popular classification techniques on existing datasets. Experiment shows that the proposed approach is able to identify botnets with high accuracy rate and high performance in a short time. The evaluation results show that the proposed solution can detect bot hosts with more than 99% accuracy, whereas the average of false positive rate is lower than 2%.
is only available to individual subscribers or to users at subscribing institutions.
Pay per view: If you are not a Subscriber and you just want to read the full contents of this article, please click here to purchase online access to the full-text of this article. Please allow 3 days + mailing time. Current price for article is US$38.00
Members of the Editorial Board or subscribers of the Software, Knowledge, Information Management and Applications (SKIMA 2013) (SKIMA2013), that have been redirected here, please click here if you have IP-authentication access, or check if you have a registered username/password subscription with Inderscience. If that is the case, please Login: