Data Mining in Long-Term Honeypot Data

被引:7
作者
Fraunholz, Daniel [1 ]
Zimmermann, Marc [1 ]
Hafner, Alexander [1 ]
Schotten, Hans D. [1 ]
机构
[1] German Res Ctr Artificial Intelligence, Intelligent Networks Res Grp, D-67663 Kaiserslautern, Germany
来源
2017 17TH IEEE INTERNATIONAL CONFERENCE ON DATA MINING WORKSHOPS (ICDMW 2017) | 2017年
关键词
FRAMEWORK;
D O I
10.1109/ICDMW.2017.92
中图分类号
TP [自动化技术、计算机技术];
学科分类号
0812 ;
摘要
Criminal activity in the Internet is becoming more sophisticated. Traditional information security techniques hardly cope with recent trends. Honeypots proved to be a valuable source of threat intelligence. In this work several Honeypots are combined into a Honeynet and observed exploitation attempts. The Honeynet consists of six Honeypots and was operated for 222 days. 12 million exploitation attempts were captured. The captured data is examined and evaluated. Several hypotheses are proposed and analyzed. Dependencies and distribution within the data are identified and quantified. Investigated features are: Temporal and spatial distribution, attacked protocols, involved autonomous systems and the employed dictionaries.
引用
收藏
页码:649 / 656
页数:8
相关论文
共 39 条
[1]   HERBAL REMEDIES FOR TREATMENT OF HYPERTENSION [J].
Agrawal, Manish ;
Nandini, D. ;
Sharma, Vikas ;
Chauhan, N. S. .
INTERNATIONAL JOURNAL OF PHARMACEUTICAL SCIENCES AND RESEARCH, 2010, 1 (05) :1-21
[2]  
Almeshekah M.H., 2014, Proceedings of the 2014 workshop on New Security Paradigms Workshop-NSPW'14, P127, DOI [10.1145/2683467.2683482, DOI 10.1145/2683467.2683482]
[3]  
Almotairi S., 2009, THESIS
[4]  
Anna-senpai, 2016, MIRAI SOURCE CODE
[5]  
[Anonymous], EUR C CYB WARF SEC
[6]  
[Anonymous], INT C SOFTW TEL COMP
[7]  
[Anonymous], ADV SCI TECHNOLOGY E
[8]  
Baecher P., 2006, MWCOLLECT ALLIANCE C
[9]  
Berthier R., 2009, INT C DEP SYST NETW, V39
[10]   Data Mining Algorithms in the Analysis of Security Logs from a Honeypot System [J].
Buda, Michal ;
Bluemke, Ilona .
DEPENDABILITY ENGINEERING AND COMPLEX SYSTEMS, 2016, 470 :63-73
1234