Peertrap: An Unstructured P2P Botnet Detection Framework Based on SAW Community Discovery

Xing, Ying; Hui, S.Y.R.; Kang, Fei; Zhao, Hao

doi:10.1155/2022/9900396

Cited by 8 publications

(4 citation statements)

References 33 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Peertrap is a botnet detection framework developed by Xing et al [6] based on Self-avoiding random walks (SAW) algorithm to detect the unstructured P2P botnet under C&C channel encryption. The dataset was used for an evaluation experiment, and the experimental results were compared to those of the current method on an unstructured data set.…”

Section: A Botnet Detection Frameworkmentioning

confidence: 99%

See 1 more Smart Citation

Botnet Detection and Incident Response in Security Operation Center (SOC): A Proposed Framework

Muhammad,

Ismail,

Hassan

2024

IJACSA

View full text Add to dashboard Cite

In the dynamic landscape of evolving cyber threats, Security Operations Centers (SOCs) play an important role in protecting digital assets. Among these threats, botnets are particularly challenging due to their ability to take over many devices and launch coordinated attacks. Through comparative analysis, the research gaps in existing frameworks have been identified. Based on these insights, a botnet detection and incident response framework aligned with SOC practices has been proposed. This proposed framework emphasizes proactive measures by integrating threat intelligence, detection and monitoring tools to detect botnet attack and facilitate rapid response. Future research will focus on conducting evaluation and validation studies to assess the effectiveness and performance of the framework in controlled environments. This effort will contribute to develop the framework and ensuring it aligns with practical cybersecurity needs.

show abstract

Section: A Botnet Detection Frameworkmentioning

confidence: 99%

“…P2P topologies are more dangerous and resilient compared to centralized topologies. The merging of malicious and legitimate traffic within P2P botnets presents one of the most significant challenges in botnet detection [6].…”

Section: Introductionmentioning

confidence: 99%

Botnet Detection and Incident Response in Security Operation Center (SOC): A Proposed Framework

Muhammad,

Ismail,

Hassan

2024

IJACSA

View full text Add to dashboard Cite

show abstract

“…Dehkordi and Sadeghiyan propose an effective noderemoval method against P2P botnets [17]. Xing et al propose an unstructured P2P botnet detection framework based on SAW community discovery [18]. Zhuang and Chang propose an enhanced PeerHunter, a network-flow level community behaviour analysis based system, to detect P2P botnets [19].…”

Section: Related Workmentioning

confidence: 99%

Modeling and Analysis in Peer-To-Peer Botnet with Virtual Patching and Quarantine Strategy

Yang

Yao

et al. 2022

Mathematical Problems in Engineering

View full text Add to dashboard Cite

Botnets, especially peer-to-peer (P2P) botnets have become the root because of many Internet attacks recently. To effectively suppress P2P botnets, quarantine and virtual patching strategy are proposed and two dynamical models (SIIQR model and SIIQPR model) are given based on the SIIR model. The two models can examine the impact of different containment strategies on the growth of the P2P botnets. In addition, the stability of equilibrium is investigated and the basic reproduction number is obtained, which governs whether or not P2P botnets are extinct. The virtual patching strategy and quarantine strategy can effectively contain the propagation of the P2P botnets. Numerical and simulation results show the effectiveness of our models, larger infected rate, and larger deploying rate of virtual patching can control the number of infected hosts more effectively.

show abstract

“…This technique has a detection rate of 99.7% and an FPR of just 0.3%, and it can identify P2P bots in tracking networks in just 5 minutes. Ying Xing et al [8] presented Peerhunter advised host-level community behaviour analysis to spot P2P botnets, but this research did not account for the chance that P2P botnets and legitimate P2P apps might coexist on the same group of hosts. The framework has a 99.2% identification success rate and can spot P2P bots even when there is legitimate P2P data.…”

mentioning

confidence: 99%

Botnet Detection Based on Machine Learning Techniques in P2P Networks

Pavana¹,

R²,

Shubha³

et al. 2023

IJSREM

View full text Add to dashboard Cite

A botnet is a network of computers that are controlled from a botmaster or a command and-control server. Botnet is a major threat on the internet. P2P botnet is a representative of P2P malicious programs. Botmaster gives a command and control (C&C) information via a unique communication channel. It remotely controls the bots that are compromised to initiate malicious activities like distributed denial of service (DDoS) attack, spamming, phishing, and sensitive information stealing. The approaches using Machine learning are used in botnet detection. They are useful to extract unexpected patterns from traffic. In this paper some of the possible technical solutions proposed by researchers are reviewed. Keywords— Botnet, malicious programs, botnet detection

show abstract

Peertrap: An Unstructured P2P Botnet Detection Framework Based on SAW Community Discovery

Cited by 8 publications

References 33 publications

Botnet Detection and Incident Response in Security Operation Center (SOC): A Proposed Framework

Botnet Detection and Incident Response in Security Operation Center (SOC): A Proposed Framework

Modeling and Analysis in Peer-To-Peer Botnet with Virtual Patching and Quarantine Strategy

Botnet Detection Based on Machine Learning Techniques in P2P Networks

Contact Info

Product

Resources

About