Multi-level analysis of Botnets behaviour
| Autor(a) principal: | |
|---|---|
| Data de Publicação: | 2011 |
| Tipo de documento: | Dissertação |
| Idioma: | eng |
| Título da fonte: | Repositório Científico de Acesso Aberto de Portugal (Repositórios Cientìficos) |
| Texto Completo: | http://hdl.handle.net/10773/8986 |
Resumo: | Nowadays, computer networks are, more than ever, major targets of security attacks. These attacks became very complex, and with different kinds of motivations. A major part of the network attacks is linked to Botnets. Botnets can be described as a group of bots that run malicious software autonomously. They mainly infect personal computers, and start performing automatic tasks, without the awareness of the users. Computers then become “part” of the Botnet. This dissertation will describe and analyse different types of spam Botnets, by installing them, capturing the generated traffic and characterizing it, in order to identify differentiating characteristics that can be used to detect their activity. Different levels of analysis are conducted, in order to understand all the functioning mechanisms of these types of networks. |
| id |
RCAP_6d6bc3d45e901a922a95a649a5fc1d94 |
|---|---|
| oai_identifier_str |
oai:ria.ua.pt:10773/8986 |
| network_acronym_str |
RCAP |
| network_name_str |
Repositório Científico de Acesso Aberto de Portugal (Repositórios Cientìficos) |
| repository_id_str |
7160 |
| spelling |
Multi-level analysis of Botnets behaviourEngenharia de computadoresRedes de computadoresSegurança informáticaNowadays, computer networks are, more than ever, major targets of security attacks. These attacks became very complex, and with different kinds of motivations. A major part of the network attacks is linked to Botnets. Botnets can be described as a group of bots that run malicious software autonomously. They mainly infect personal computers, and start performing automatic tasks, without the awareness of the users. Computers then become “part” of the Botnet. This dissertation will describe and analyse different types of spam Botnets, by installing them, capturing the generated traffic and characterizing it, in order to identify differentiating characteristics that can be used to detect their activity. Different levels of analysis are conducted, in order to understand all the functioning mechanisms of these types of networks.Hoje em dia, as redes de computadores têm sido, mais do que nunca, alvo de ataques de segurança. Estes ataques tornaram-se bastante complexos, e com diferentes tipos de motivações. Uma grande parte destes ataques está ligado a Botnets. As Botnets podem ser descritas como um grupo de bots que executam software malicioso autonomamente. Infectam maioritariamente computadores pessoais, e começam a executar tarefas automáticamente, sem o conhecimento dos utilizadores. Os computadores tornamse então “parte” da Botnet. Nesta dissertação, são descritos e analisados diferentes tipos de Botnets dedicadas ao envio de spam. Após serem instaladas, o tráfego gerado é capturado, processado e analisado, por forma a identificar características que possam diferenciar cada um dos tipos de Botnets. São efectuados diferentes níveis de análise, de forma a compreender todos os mecanismos de funcionamento destes tipos de redes.Universidade de Aveiro2012-09-10T08:45:29Z2011-01-01T00:00:00Z2011info:eu-repo/semantics/publishedVersioninfo:eu-repo/semantics/masterThesisapplication/pdfhttp://hdl.handle.net/10773/8986engSousa, Ruiinfo:eu-repo/semantics/openAccessreponame:Repositório Científico de Acesso Aberto de Portugal (Repositórios Cientìficos)instname:Agência para a Sociedade do Conhecimento (UMIC) - FCT - Sociedade da Informaçãoinstacron:RCAAP2024-02-22T11:15:22Zoai:ria.ua.pt:10773/8986Portal AgregadorONGhttps://www.rcaap.pt/oai/openaireopendoar:71602024-03-20T02:45:57.884951Repositório Científico de Acesso Aberto de Portugal (Repositórios Cientìficos) - Agência para a Sociedade do Conhecimento (UMIC) - FCT - Sociedade da Informaçãofalse |
| dc.title.none.fl_str_mv |
Multi-level analysis of Botnets behaviour |
| title |
Multi-level analysis of Botnets behaviour |
| spellingShingle |
Multi-level analysis of Botnets behaviour Sousa, Rui Engenharia de computadores Redes de computadores Segurança informática |
| title_short |
Multi-level analysis of Botnets behaviour |
| title_full |
Multi-level analysis of Botnets behaviour |
| title_fullStr |
Multi-level analysis of Botnets behaviour |
| title_full_unstemmed |
Multi-level analysis of Botnets behaviour |
| title_sort |
Multi-level analysis of Botnets behaviour |
| author |
Sousa, Rui |
| author_facet |
Sousa, Rui |
| author_role |
author |
| dc.contributor.author.fl_str_mv |
Sousa, Rui |
| dc.subject.por.fl_str_mv |
Engenharia de computadores Redes de computadores Segurança informática |
| topic |
Engenharia de computadores Redes de computadores Segurança informática |
| description |
Nowadays, computer networks are, more than ever, major targets of security attacks. These attacks became very complex, and with different kinds of motivations. A major part of the network attacks is linked to Botnets. Botnets can be described as a group of bots that run malicious software autonomously. They mainly infect personal computers, and start performing automatic tasks, without the awareness of the users. Computers then become “part” of the Botnet. This dissertation will describe and analyse different types of spam Botnets, by installing them, capturing the generated traffic and characterizing it, in order to identify differentiating characteristics that can be used to detect their activity. Different levels of analysis are conducted, in order to understand all the functioning mechanisms of these types of networks. |
| publishDate |
2011 |
| dc.date.none.fl_str_mv |
2011-01-01T00:00:00Z 2011 2012-09-10T08:45:29Z |
| dc.type.status.fl_str_mv |
info:eu-repo/semantics/publishedVersion |
| dc.type.driver.fl_str_mv |
info:eu-repo/semantics/masterThesis |
| format |
masterThesis |
| status_str |
publishedVersion |
| dc.identifier.uri.fl_str_mv |
http://hdl.handle.net/10773/8986 |
| url |
http://hdl.handle.net/10773/8986 |
| dc.language.iso.fl_str_mv |
eng |
| language |
eng |
| dc.rights.driver.fl_str_mv |
info:eu-repo/semantics/openAccess |
| eu_rights_str_mv |
openAccess |
| dc.format.none.fl_str_mv |
application/pdf |
| dc.publisher.none.fl_str_mv |
Universidade de Aveiro |
| publisher.none.fl_str_mv |
Universidade de Aveiro |
| dc.source.none.fl_str_mv |
reponame:Repositório Científico de Acesso Aberto de Portugal (Repositórios Cientìficos) instname:Agência para a Sociedade do Conhecimento (UMIC) - FCT - Sociedade da Informação instacron:RCAAP |
| instname_str |
Agência para a Sociedade do Conhecimento (UMIC) - FCT - Sociedade da Informação |
| instacron_str |
RCAAP |
| institution |
RCAAP |
| reponame_str |
Repositório Científico de Acesso Aberto de Portugal (Repositórios Cientìficos) |
| collection |
Repositório Científico de Acesso Aberto de Portugal (Repositórios Cientìficos) |
| repository.name.fl_str_mv |
Repositório Científico de Acesso Aberto de Portugal (Repositórios Cientìficos) - Agência para a Sociedade do Conhecimento (UMIC) - FCT - Sociedade da Informação |
| repository.mail.fl_str_mv |
|
| _version_ |
1799137512100200448 |