Analysis of Malware Dns Attack on the Network Using Domain Name System Indicators Analisis Serangan Dns Malware Di Jaringan Menggunakan Domain Name System Indikator (Studi Kasus Universitas Bina Darma)

UNIVERSITAS BINA DARMA, UNIVERSITAS BINA DARMA (2022) Analysis of Malware Dns Attack on the Network Using Domain Name System Indicators Analisis Serangan Dns Malware Di Jaringan Menggunakan Domain Name System Indikator (Studi Kasus Universitas Bina Darma). Analysis of Malware Dns Attack on the Network Using Domain Name System Indicators Analisis Serangan Dns Malware Di Jaringan Menggunakan Domain Name System Indikator (Studi Kasus Universitas Bina Darma).

[img]
Preview
 Text
Beni (2020) Analysis of Malware Dns Attack on the Network Using Domain Name System Indicators - Analisis Serangan Dns Malware Di Jaringan Menggunakan Domain Name System Indikator.pdf
Download (626kB) | Preview
Official URL: https://www.binadarma.ac.id

Abstract

University of Bina Darma Palembang has its own DNS server and in this study using log data from the Bina Darma University DNS server as data in the study, DNS log server data is analyzed by network traffic, using Network Analyzer tools to see the activity of a normal traffic or anomaly traffic, or even contains DGA Malware (Generating Algorthm Domain).DGA malware produces a number of random domain names that are used to infiltrate DNS servers. To detect DGA using DNS traffic, NXDomain. The result is that each domain name in a group domain is generated by one domain that is often used at short times and simultaneously has a similar life time and query style. Next look for this pattern in NXDomain DNS traffic to filter domains generated algorithmically that the domain contains DGA. In analyzing DNS traffic whether it contains Malware and whether network traffic is normal or anomaly, in this study it detects Malwere DNS From the results of the stages of the suspected domain indicated by malware, a suspected domain list table is also created and also a suspected list of IP addresses. To support the suspected domain analysis results, info graphic is displayed using rappidminer tools to test decisions that have been made using the previous tools using the Decision Tree method.

Item Type: Article
Subjects: L Education > L Education (General)
Divisions: Faculty of Law, Arts and Social Sciences > School of Education
Depositing User: Mr Edi Surya Negara
Date Deposited: 25 Jun 2022 03:39
Last Modified: 25 Jun 2022 03:39
URI: http://eprints.binadarma.ac.id/id/eprint/15831

Actions (login required)

View Item View Item
Bina Darma e-Journal is powered by EPrints 3 which is developed by the School of Electronics and Computer Science at the University of Southampton. More information and software credits.