Dom2Vec - Detecting DGA domains through word embeddings and AI/ML-driven lexicographic analysis

Torrealba Aravena, Lucas - Casas, Pedro - Bustos-Jiménez, Javier - Capdehourat, Germán - Findrik, Mislav

Resumen:

The timely identification of DNS queries to Domain Generation Algorithm (DGA) domains plays a critical role in mitigationg malware propagation and its potential impact, especially in thwarting coordinated botnet activity. We introduce Dom2Vec, an innovative approach for swiftly detecting DGA-generated domains by lveraring lexicographic features exclusively derived from the observed domain names in DNS queries.


Detalles Bibliográficos
2023
DGA Detection
Word2Vec
TF-IDF
n-grams
Lexicographic Analysis
DNS
Machine Learning
Inglés
Universidad de la República
COLIBRI
https://hdl.handle.net/20.500.12008/39872
Acceso abierto
Licencia Creative Commons Atribución - No Comercial - Sin Derivadas (CC - By-NC-ND 4.0)
Resumen:
Sumario:The timely identification of DNS queries to Domain Generation Algorithm (DGA) domains plays a critical role in mitigationg malware propagation and its potential impact, especially in thwarting coordinated botnet activity. We introduce Dom2Vec, an innovative approach for swiftly detecting DGA-generated domains by lveraring lexicographic features exclusively derived from the observed domain names in DNS queries.