Analisis Serangan Dns Malware Di Jaringan Menggunakan Domain Name System Indikator (Studi Kasus Universitas Bina Darma)

Dedy, Syamsuar and Yesi, Novaria Kunang (2022) Analisis Serangan Dns Malware Di Jaringan Menggunakan Domain Name System Indikator (Studi Kasus Universitas Bina Darma). Analisis Serangan Dns Malware Di Jaringan Menggunakan Domain Name System Indikator (Studi Kasus Universitas Bina Darma).

[img]
Preview
 Text
ISI_benibraha (2 files merged).pdf
Download (2MB) | Preview
Official URL: https://www.binadarma.ac.id

Abstract

University of Bina Darma Palembang has its own DNS server and in this study using log data from the Bina Darma University DNS server as data in the study, DNS log server data is analyzed by network traffic, using Network Analyzer tools to see the activity of a normal traffic or anomaly traffic, or even contains DGA Malware (Generating Algorthm Domain).DGA malware produces a number of random domain names that are used to infiltrate DNS servers. To detect DGA using DNS traffic, NXDomain. The result is that each domain name in a group domain is generated by one domain that is often used at short times and simultaneously has a similar life time and query style. Next look for this pattern in NXDomain DNS traffic to filter domains generated algorithmically that the domain contains DGA. In analyzing DNS traffic whether it contains Malware and whether network traffic is normal or anomaly, in this study it detects Malwere DNS From the results of the stages of the suspected domain indicated by malware, a suspected domain list table is also created and also a suspected list of IP addresses. To support the suspected domain analysis results, info graphic is displayed using rappidminer tools to test decisions that have been made using the previous tools using the Decision Tree method.

Item Type: Article
Subjects: T Technology > T Technology (General)
Divisions: Faculty of Engineering, Science and Mathematics > School of Electronics and Computer Science
Depositing User: Mr Edi Surya Negara
Date Deposited: 23 Jun 2022 02:07
Last Modified: 23 Jun 2022 02:07
URI: http://eprints.binadarma.ac.id/id/eprint/14693

Actions (login required)

View Item View Item
Bina Darma e-Journal is powered by EPrints 3 which is developed by the School of Electronics and Computer Science at the University of Southampton. More information and software credits.