EXPOSURE: Finding Malicious Domains Using Passive DNS Analysis

  title={EXPOSURE: Finding Malicious Domains Using Passive DNS Analysis},
  author={Leyla Bilge and Engin Kirda and Christopher Kr{\"u}gel and Marco Balduzzi},
The domain name service (DNS) plays an important role in the operation of the Internet, providing a two-way mapping between domain names and their numerical identifiers. Given its fundamental role, it is not surprising that a wide variety of malicious activities involve the domain name service in one way or another. For example, bots resolve DNS names to locate their command and control servers, and spam mails contain URLs that link to domains that resolve to scam servers. Thus, it seems… CONTINUE READING
Highly Influential
This paper has highly influenced 38 other papers. REVIEW HIGHLY INFLUENTIAL CITATIONS
Highly Cited
This paper has 338 citations. REVIEW CITATIONS


Publications citing this paper.
Showing 1-10 of 229 extracted citations

Botnet Detection Using Passive DNS

View 14 Excerpts
Highly Influenced

BotCensor: Detecting DGA-Based Botnet Using Two-Stage Anomaly Detection

2018 17th IEEE International Conference On Trust, Security And Privacy In Computing And Communications/ 12th IEEE International Conference On Big Data Science And Engineering (TrustCom/BigDataSE) • 2018
View 8 Excerpts
Highly Influenced

CLEAN : An approach for detecting benign domain names based on passive DNS traffic

2017 6th International Conference on Computer Science and Network Technology (ICCSNT) • 2017
View 7 Excerpts
Highly Influenced

Discovering Malicious Domains through Alias-Canonical Graph

2017 IEEE Trustcom/BigDataSE/ICESS • 2017
View 9 Excerpts
Highly Influenced

A Survey of Data Mining and Machine Learning Methods for Cyber Security Intrusion Detection

IEEE Communications Surveys & Tutorials • 2016
View 6 Excerpts
Highly Influenced

A Hybrid Learning from Multi-behavior for Malicious Domain Detection on Enterprise Network

2015 IEEE International Conference on Data Mining Workshop (ICDMW) • 2015
View 8 Excerpts
Highly Influenced

A survey of botnet detection based on DNS

Neural Computing and Applications • 2015
View 10 Excerpts
Highly Influenced

338 Citations

Citations per Year
Semantic Scholar estimates that this publication has 338 citations based on the available data.

See our FAQ for additional information.


Publications referenced by this paper.

Similar Papers

Loading similar papers…