Dedy, Syamsuar and Yesi, Novaria Kunang (2022) Analisis Serangan Dns Malware Di Jaringan Menggunakan Domain Name System Indikator (Studi Kasus Universitas Bina Darma). Analisis Serangan Dns Malware Di Jaringan Menggunakan Domain Name System Indikator (Studi Kasus Universitas Bina Darma).
|
Text
ISI_benibraha (2 files merged).pdf Download (2MB) | Preview |
Abstract
University of Bina Darma Palembang has its own DNS server and in this study using log data from the Bina Darma University DNS server as data in the study, DNS log server data is analyzed by network traffic, using Network Analyzer tools to see the activity of a normal traffic or anomaly traffic, or even contains DGA Malware (Generating Algorthm Domain).DGA malware produces a number of random domain names that are used to infiltrate DNS servers. To detect DGA using DNS traffic, NXDomain. The result is that each domain name in a group domain is generated by one domain that is often used at short times and simultaneously has a similar life time and query style. Next look for this pattern in NXDomain DNS traffic to filter domains generated algorithmically that the domain contains DGA. In analyzing DNS traffic whether it contains Malware and whether network traffic is normal or anomaly, in this study it detects Malwere DNS From the results of the stages of the suspected domain indicated by malware, a suspected domain list table is also created and also a suspected list of IP addresses. To support the suspected domain analysis results, info graphic is displayed using rappidminer tools to test decisions that have been made using the previous tools using the Decision Tree method.
Item Type: | Article |
---|---|
Subjects: | T Technology > T Technology (General) |
Divisions: | Faculty of Engineering, Science and Mathematics > School of Electronics and Computer Science |
Depositing User: | Mr Edi Surya Negara |
Date Deposited: | 23 Jun 2022 02:07 |
Last Modified: | 23 Jun 2022 02:07 |
URI: | http://eprints.binadarma.ac.id/id/eprint/14693 |
Actions (login required)
View Item |