Malware Detection From The Network Perspective Using NetFlow Data

Authors

ČELEDA Pavel VYKOPAL Jan PLESNÍK Tomáš TRUNEČKA Michal KRMÍČEK Vojtěch

Year of publication 2010
Type R&D Presentation
MU Faculty or unit

Institute of Computer Science

Citation
Description We introduce a new botnet that we have discovered using NetFlow data at the end of 2009. Upon a botnet discovery we designed and implemented plug-in for NfSen collector to help further botnet detection. We will describe plug-in architecture and particular methods for the botnet activity discovery based on NetFlow data. Their combination allows an efficient detection of the Chuck Norris botnet.
Related projects:

You are running an old browser version. We recommend updating your browser to its latest version.

More info