DNSAnomDet

Authors

ČERMÁK Milan

Year of publication 2014
MU Faculty or unit

Institute of Computer Science

Attached files
Description DNSAnomDet is a suite of scripts that automate detection of DNS traffic anomalies, using IP flows in the IPFIX format extended by information from DNS packets. Scripts focus on detection of cybersquatting, DNS amplification attacks, open DNS resolvers, malware domain queries, and DNS tunneling detection.

You are running an old browser version. We recommend updating your browser to its latest version.

More info