A meta data mining framework for botnet analysis

Afzalul Haque, Amrit Venkat Ayyar, Sanjay Singh

Research output: Contribution to journalArticle

Abstract

Botnets are a group of compromised computers that act in a coordinated manner against a target determined by a single point of control. Meta-analysis of botnets is crucial as it results in knowledge about the botnet, often providing valuable information to researchers who are looking to eradicate it. However, meta-analysis has not been applied from a research standpoint for botnets detection and analysis. This paper proposes a framework that uses modified implementation of Apriori data mining algorithms on data-sets derived from end-user logs for meta-analysis. It also presents a case study following the proposed approach. The results of this case study present some interesting heuristics that can be used to eradicate the botnet. These heuristics include the indication of vulnerabilities, new trends in botnet malware among others.

Original languageEnglish
Pages (from-to)392-399
Number of pages8
JournalInternational Journal of Computers and Applications
Volume41
Issue number5
DOIs
Publication statusPublished - 03-09-2019

    Fingerprint

All Science Journal Classification (ASJC) codes

  • Software
  • Hardware and Architecture
  • Computer Science Applications
  • Computer Graphics and Computer-Aided Design

Cite this