Honeynet Based Botnet Detection Using Command Signatures

Bhatia, J. S.; Sehgal, Rakesh; Kumar, Sanjeev

doi:10.1007/978-3-642-21153-9_7

Cited by 7 publications

(3 citation statements)

References 6 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

Section: Review Of the Literaturementioning

confidence: 99%

“…During that same time, global internet threats transitioned from disabling infrastructure to targeting people and organizations, endangering businesses and governments (Bhatia et al , 2011). Developments in technology included common security infrastructure and intrusion detection systems designed to detect multiple operating systems in information technology (Bhatia et al , 2011). Honeypot data collection technologies, computer or network services used as traps for detecting and detouring robot networks (botnets), were discussed along with their developmental importance for the future of IS (Bhatia et al , 2011).…”

Section: Review Of the Literaturementioning

confidence: 99%

See 1 more Smart Citation

Solutions for counteracting human deception in social engineering attacks

Campbell

2019

ITP

View full text Add to dashboard Cite

Purpose The purpose of this paper is to investigate the top three cybersecurity issues in organizations related to social engineering and aggregate solutions for counteracting human deception in social engineering attacks. Design/methodology/approach A total of 20 experts within Information System Security Association participated in a three-round Delphi study for aggregating and condensing expert opinions. Three rounds moved participants toward consensus for solutions to counteract social engineering attacks in organizations. Findings Three significant issues: compromised data; ineffective practices; and lack of ongoing education produced three target areas for implementing best practices in countering social engineering attacks. The findings offer counteractions by including education, policies, processes and continuous training in security practices. Research limitations/implications Study limitations include lack of prior data on effective social engineering defense. Research implications stem from the psychology of human deception and trust with the ability to detect deception. Practical implications Practical implications relate to human judgment in complying with effective security policies and programs and consistent education and training. Future research may include exploring financial, operational and educational costs of implementing social engineering solutions. Social implications Social implications apply across all knowledge workers who benefit from technology and are trusted to protect organizational assets and intellectual property. Originality/value This study contributes to the field of cybersecurity with a focus on trust and human deception to investigate solutions to counter social engineering attacks. This paper adds to under-represented cybersecurity research regarding effective implementation for social engineering defense.

show abstract

Section: Review Of the Literaturementioning

confidence: 99%

Section: Review Of the Literaturementioning

confidence: 99%

Solutions for counteracting human deception in social engineering attacks

Campbell

2019

ITP

View full text Add to dashboard Cite

show abstract

“…The primary goal of most Analysis-Based techniques is to detect, (and in some cases, prevent) the presence of botnets or bot activity in the network. One way by which this is achieved is by comparing certain characteristics of network traffic with a database of attributes (signatures) that have already been associated with specific botnet behaviours, such as those proposed by Zand et al [73], Bilge et al [74] and Bhatia et al [75]. Furthermore, as seen in the literature, another technique seeks to analyse network traffic for traffic/packets that exhibit behaviours that deviate from the normal, observable network behaviour (an anomaly), such as those proposed by Wang et al [76], Boukhtouta et al [77], Zhao et al [78] and Caglayan et al [79].…”

Section: Analysis-basedmentioning

confidence: 99%

A Botnets Circumspection: The Current Threat Landscape, and What We Know So Far

et al. 2019

View full text Add to dashboard Cite

Botnets have carved a niche in contemporary networking and cybersecurity due to the impact of their operations. The botnet threat continues to evolve and adapt to countermeasures as the security landscape continues to shift. As research efforts attempt to seek a deeper and robust understanding of the nature of the threat for more effective solutions, it becomes necessary to again traverse the threat landscape, and consolidate what is known so far about botnets, that future research directions could be more easily visualised. This research uses the general exploratory approach of the qualitative methodology to survey the current botnet threat landscape: Covering the typology of botnets and their owners, the structure and lifecycle of botnets, botnet attack modes and control architectures, existing countermeasure solutions and limitations, as well as the prospects of a botnet threat. The product is a consolidation of knowledge pertaining the nature of the botnet threat; which also informs future research directions into aspects of the threat landscape where work still needs to be done.

show abstract

Particle Swarm Optimization Algorithm Based Artificial Neural Network for Botnet Detection

Panimalar¹

2021

Wireless Pers Commun

View full text Add to dashboard Cite

Honeynet Based Botnet Detection Using Command Signatures

Cited by 7 publications

References 6 publications

Solutions for counteracting human deception in social engineering attacks

Solutions for counteracting human deception in social engineering attacks

A Botnets Circumspection: The Current Threat Landscape, and What We Know So Far

Particle Swarm Optimization Algorithm Based Artificial Neural Network for Botnet Detection

Contact Info

Product

Resources

About