Real-Time Detection of Fast Flux Service Networks

  title={Real-Time Detection of Fast Flux Service Networks},
  author={Alper Caglayan and Mike Toothaker and Dan Drapeau and Dustin Burke and Gerry Eaton},
  journal={2009 Cybersecurity Applications & Technology Conference for Homeland Security},
Here we present the first empirical study of detecting and classifying fast flux service networks (FFSNs) in real time. FFSNs exploit a network of compromised machines (zombies) for illegal activities such as spam, phishing and malware delivery using DNS record manipulation techniques. Previous studies have focused on actively monitoring these activities over a large window (days, months) to detect such FFSNs and measure their footprint. In this paper, we present a Fast Flux Monitor (FFM) that… CONTINUE READING
Highly Cited
This paper has 49 citations. REVIEW CITATIONS


Publications citing this paper.
Showing 1-10 of 32 extracted citations


Publications referenced by this paper.
Showing 1-6 of 6 references

It ’ s The End Of The Cache As We Know It Or : “ 64 K Should Be Good Enough For Anyone

  • Dan Kaminsky
  • Securing the Federal Government ' s Domain Name…
  • 2008

Know Your Enemy: Fast-flux Service Networks

  • G. Knight
  • ICANN. GNSO Issues Report on Fast Flux Hosting,
  • 2008

“ Cybercrime is in a State of Flux ”

  • G. Knight
  • “ Phishing Cyber Gang Upgrades to Fast Flux…
  • 2008

“ Internet LawIslamic Terrorist Software Released to Cloak Jihadist Communications ”

  • K. O'Connell
  • The Guardian
  • 2008

Similar Papers

Loading similar papers…