{"id":2740,"date":"2018-07-01T00:00:19","date_gmt":"2018-06-30T22:00:19","guid":{"rendered":"https:\/\/cyberawareness.sk\/?p=2740"},"modified":"2024-10-31T13:09:16","modified_gmt":"2024-10-31T12:09:16","slug":"detekcia-malveru-pomocou-dns-udajov","status":"publish","type":"post","link":"https:\/\/cyberawareness.sk\/en\/2018\/07\/01\/detekcia-malveru-pomocou-dns-udajov\/","title":{"rendered":"Detekcia malv\u00e9ru pomocou DNS \u00fadajov"},"content":{"rendered":"<div data-elementor-type=\"wp-post\" data-elementor-id=\"2740\" class=\"elementor elementor-2740\">\n\t\t\t\t<div class=\"elementor-element elementor-element-fa18013 e-flex e-con-boxed e-con e-parent\" data-id=\"fa18013\" data-element_type=\"container\" data-e-type=\"container\">\n\t\t\t\t\t<div class=\"e-con-inner\">\n\t\t<div class=\"elementor-element elementor-element-6e108e7 e-flex e-con-boxed e-con e-child\" data-id=\"6e108e7\" data-element_type=\"container\" data-e-type=\"container\">\n\t\t\t\t\t<div class=\"e-con-inner\">\n\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<div class=\"elementor-element elementor-element-8e851db elementor-widget elementor-widget-text-editor\" data-id=\"8e851db\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"text-editor.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t\t\t\t\t<p><strong>Autor: <\/strong>Bc. Martina Pivarn\u00edkov\u00e1<br \/><strong>\u0160kolite\u013e: <\/strong>doc. RNDr. JUDr. Pavol Sokol, PhD.<br \/><strong>Konzultant: <\/strong>RNDr. Tom\u00e1\u0161 Bajto\u0161, PhD.<\/p>\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<div class=\"elementor-element elementor-element-e5a0a23 elementor-widget elementor-widget-heading\" data-id=\"e5a0a23\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"heading.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t<h3 class=\"elementor-heading-title elementor-size-default\">Abstrakt<\/h3>\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<div class=\"elementor-element elementor-element-b77c4c2 elementor-widget elementor-widget-text-editor\" data-id=\"b77c4c2\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"text-editor.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t\t\t\t\t<p>Jednou z top 15 hrozieb internetu podl\u030ca ENISA Threat Landscape su\u0301 boti a botnety. Ta\u0301to pra\u0301ca je zamerana\u0301 na detekciu malve\u0301ru pomocou DNS za\u0301znamov. Hlavny\u0301m ciel\u030com pra\u0301ce je navrhnu\u0301t\u030c a aplikovat\u030c meto\u0301dy, ktore\u0301 budu\u0301 u\u0301c\u030cinne\u0301 na odhalenie pri\u0301tomnosti malve\u0301ru na hostitel\u030cskom zariadeni\u0301 v poc\u030ci\u0301tac\u030covej sieti. Zameriava sa hlavne na botnety, ktore\u0301 vyuz\u030ci\u0301vaju\u0301 algoritmy generovania dome\u0301n. Na odfiltrovanie legiti\u0301mnej DNS preva\u0301dzky sa vyuz\u030ci\u0301va zoznam povoleny\u0301ch dome\u0301novy\u0301ch mien (tzv. whitelist). D\u030cals\u030cou filtra\u0301ciou je zoznam s\u030ckodlivy\u0301ch dome\u0301novy\u0301ch mien (tzv. blacklist), podl\u030ca ktore\u0301ho sa jednoznac\u030cne urc\u030ci\u0301, ktora\u0301 dome\u0301na je s\u030ckodliva\u0301. Vygenerovane\u0301 dome\u0301nove\u0301 mena\u0301 c\u030casto nemaju\u0301 z\u030ciadnu s\u030ctruktu\u0301ru a va\u0308c\u030cs\u030cinou su\u0301 zloz\u030cene\u0301 z na\u0301hodny\u0301ch znakov. Z tohto do\u0302vodu je tiez\u030c analyzovana\u0301 skladba dome\u0301nove\u0301ho mena. Pra\u0301ce sa su\u0301stredi\u0301 aj na sledovanie DNS odpovedi\u0301, pomocou ktory\u0301ch sa da\u0301 indikovat\u030c, c\u030ci je zariadenie v poc\u030ci\u0301tac\u030covej sieti infikovane\u0301.<\/p>\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<div class=\"elementor-element elementor-element-e39a89a elementor-widget elementor-widget-heading\" data-id=\"e39a89a\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"heading.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t<h3 class=\"elementor-heading-title elementor-size-default\">Ciele<\/h3>\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<div class=\"elementor-element elementor-element-05fb267 elementor-widget elementor-widget-text-editor\" data-id=\"05fb267\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"text-editor.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t\t\t\t\t<ul><li><span dir=\"ltr\" style=\"left: 24.77%;top: 37.19%;font-size: calc(var(--scale-factor)*12.00px);font-family: sans-serif\" role=\"presentation\">Analyzova\u0165 a spracova\u0165 mo\u017enosti detekcie \u0161kodliv\u00e9ho k\u00f3du a botnetov<\/span><\/li><li><span dir=\"ltr\" style=\"left: 27.85%;top: 38.9%;font-size: calc(var(--scale-factor)*12.00px);font-family: sans-serif\" role=\"presentation\">Porovna\u0165<\/span> <span dir=\"ltr\" style=\"left: 36.83%;top: 38.9%;font-size: calc(var(--scale-factor)*12.00px);font-family: sans-serif\" role=\"presentation\">met\u00f3dy<\/span> <span dir=\"ltr\" style=\"left: 44.27%;top: 38.9%;font-size: calc(var(--scale-factor)*12.00px);font-family: sans-serif\" role=\"presentation\">pou\u017e\u00edvan\u00e9<\/span> <span dir=\"ltr\" style=\"left: 53.95%;top: 38.9%;font-size: calc(var(--scale-factor)*12.00px);font-family: sans-serif\" role=\"presentation\">pri<\/span> <span dir=\"ltr\" style=\"left: 57.59%;top: 38.9%;font-size: calc(var(--scale-factor)*12.00px);font-family: sans-serif\" role=\"presentation\">detekcii<\/span> <span dir=\"ltr\" style=\"left: 65.36%;top: 38.9%;font-size: calc(var(--scale-factor)*12.00px);font-family: sans-serif\" role=\"presentation\">bezpe\u010dnostn\u00fdch<\/span> <span dir=\"ltr\" style=\"left: 79.63%;top: 38.9%;font-size: calc(var(--scale-factor)*12.00px);font-family: sans-serif\" role=\"presentation\">incidentov <\/span><span dir=\"ltr\" style=\"left: 24.77%;top: 40.61%;font-size: calc(var(--scale-factor)*12.00px);font-family: sans-serif\" role=\"presentation\">pomocou DNS \u00fadajov<\/span><\/li><li><span dir=\"ltr\" style=\"left: 28.01%;top: 42.32%;font-size: calc(var(--scale-factor)*12.00px);font-family: sans-serif\" role=\"presentation\">Navrhn\u00fa\u0165<\/span> <span dir=\"ltr\" style=\"left: 37.48%;top: 42.32%;font-size: calc(var(--scale-factor)*12.00px);font-family: sans-serif\" role=\"presentation\">and<\/span> <span dir=\"ltr\" style=\"left: 39.93%;top: 42.32%;font-size: calc(var(--scale-factor)*12.00px);font-family: sans-serif\" role=\"presentation\">implementova\u0165<\/span> <span dir=\"ltr\" style=\"left: 53.88%;top: 42.32%;font-size: calc(var(--scale-factor)*12.00px);font-family: sans-serif\" role=\"presentation\">syst\u00e9m<\/span> <span dir=\"ltr\" style=\"left: 61.03%;top: 42.32%;font-size: calc(var(--scale-factor)*12.00px);font-family: sans-serif\" role=\"presentation\">pre<\/span> <span dir=\"ltr\" style=\"left: 65.16%;top: 42.32%;font-size: calc(var(--scale-factor)*12.00px);font-family: sans-serif\" role=\"presentation\">detekciu<\/span> <span dir=\"ltr\" style=\"left: 73.54%;top: 42.32%;font-size: calc(var(--scale-factor)*12.00px);font-family: sans-serif\">malv\u00e9ru,<\/span> <span dir=\"ltr\" style=\"left: 82.2%;top: 42.32%;font-size: calc(var(--scale-factor)*12.00px);font-family: sans-serif\" role=\"presentation\">Syst\u00e9m <\/span><span dir=\"ltr\" style=\"left: 24.77%;top: 44.03%;font-size: calc(var(--scale-factor)*12.00px);font-family: sans-serif\">vyhodnoti\u0165<br \/><\/span><\/li><\/ul>\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<div class=\"elementor-element elementor-element-89aa96b elementor-widget elementor-widget-heading\" data-id=\"89aa96b\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"heading.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t<h3 class=\"elementor-heading-title elementor-size-default\">Literat\u00fara<\/h3>\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<div class=\"elementor-element elementor-element-d149794 elementor-widget elementor-widget-text-editor\" data-id=\"d149794\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"text-editor.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t\t\t\t\t<ul><li><span dir=\"ltr\" style=\"left: 24.77%;top: 46.42%;font-size: calc(var(--scale-factor)*12.00px);font-family: sans-serif\" role=\"presentation\">VU HONG, Linh. DNS Traffic Analysis for Network-based Malware <\/span><span dir=\"ltr\" style=\"left: 24.77%;top: 48.13%;font-size: calc(var(--scale-factor)*12.00px);font-family: sans-serif\" role=\"presentation\">Detection. 2012.<\/span><\/li><li><span dir=\"ltr\" style=\"left: 24.77%;top: 49.84%;font-size: calc(var(--scale-factor)*12.00px);font-family: sans-serif\" role=\"presentation\">SILVA, S\u00e9rgio SC, et al. Botnets: A survey. Computer Networks, 2013, 57.2: <\/span><span dir=\"ltr\" style=\"left: 24.77%;top: 51.55%;font-size: calc(var(--scale-factor)*12.00px);font-family: sans-serif\" role=\"presentation\">378-403.<\/span><\/li><li><span dir=\"ltr\" style=\"left: 24.77%;top: 53.26%;font-size: calc(var(--scale-factor)*12.00px);font-family: sans-serif\" role=\"presentation\">AITCHISON, Ron. Pro Dns and BIND 10. Apress, 2011.<\/span><\/li><li><span dir=\"ltr\" style=\"left: 24.77%;top: 54.97%;font-size: calc(var(--scale-factor)*12.00px);font-family: sans-serif\" role=\"presentation\">ALIEYAN, Kamal, et al. A survey of botnet detection based on DNS. Neural <\/span><span dir=\"ltr\" style=\"left: 24.77%;top: 56.68%;font-size: calc(var(--scale-factor)*12.00px);font-family: sans-serif\" role=\"presentation\">Computing and Applications, 2015, 1-18.<br \/><\/span><\/li><\/ul>\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<div class=\"elementor-element elementor-element-a432df6 elementor-widget elementor-widget-heading\" data-id=\"a432df6\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"heading.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t<h3 class=\"elementor-heading-title elementor-size-default\">Priebeh pr\u00e1ce<\/h3>\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<div class=\"elementor-element elementor-element-f13991a elementor-widget elementor-widget-text-editor\" data-id=\"f13991a\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"text-editor.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t\t\t\t\t<p>Zatia\u013e nezverejnen\u00e9<\/p>\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<\/div>","protected":false},"excerpt":{"rendered":"<p>Autor: Bc. Martina Pivarn\u00edkov\u00e1<br \/>\n\u0160kolite\u013e: doc. RNDr. JUDr. Pavol Sokol, PhD.<br \/>\nKonzultant: RNDr. Tom\u00e1\u0161 Bajto\u0161, PhD.<\/p>","protected":false},"author":8,"featured_media":2397,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"ocean_post_layout":"full-width","ocean_both_sidebars_style":"","ocean_both_sidebars_content_width":0,"ocean_both_sidebars_sidebars_width":0,"ocean_sidebar":"","ocean_second_sidebar":"","ocean_disable_margins":"enable","ocean_add_body_class":"","ocean_shortcode_before_top_bar":"","ocean_shortcode_after_top_bar":"","ocean_shortcode_before_header":"","ocean_shortcode_after_header":"","ocean_has_shortcode":"","ocean_shortcode_after_title":"","ocean_shortcode_before_footer_widgets":"","ocean_shortcode_after_footer_widgets":"","ocean_shortcode_before_footer_bottom":"","ocean_shortcode_after_footer_bottom":"","ocean_display_top_bar":"default","ocean_display_header":"default","ocean_header_style":"","ocean_center_header_left_menu":"","ocean_custom_header_template":"","ocean_custom_logo":0,"ocean_custom_retina_logo":0,"ocean_custom_logo_max_width":0,"ocean_custom_logo_tablet_max_width":0,"ocean_custom_logo_mobile_max_width":0,"ocean_custom_logo_max_height":0,"ocean_custom_logo_tablet_max_height":0,"ocean_custom_logo_mobile_max_height":0,"ocean_header_custom_menu":"","ocean_menu_typo_font_family":"","ocean_menu_typo_font_subset":"","ocean_menu_typo_font_size":0,"ocean_menu_typo_font_size_tablet":0,"ocean_menu_typo_font_size_mobile":0,"ocean_menu_typo_font_size_unit":"px","ocean_menu_typo_font_weight":"","ocean_menu_typo_font_weight_tablet":"","ocean_menu_typo_font_weight_mobile":"","ocean_menu_typo_transform":"","ocean_menu_typo_transform_tablet":"","ocean_menu_typo_transform_mobile":"","ocean_menu_typo_line_height":0,"ocean_menu_typo_line_height_tablet":0,"ocean_menu_typo_line_height_mobile":0,"ocean_menu_typo_line_height_unit":"","ocean_menu_typo_spacing":0,"ocean_menu_typo_spacing_tablet":0,"ocean_menu_typo_spacing_mobile":0,"ocean_menu_typo_spacing_unit":"","ocean_menu_link_color":"","ocean_menu_link_color_hover":"","ocean_menu_link_color_active":"","ocean_menu_link_background":"","ocean_menu_link_hover_background":"","ocean_menu_link_active_background":"","ocean_menu_social_links_bg":"","ocean_menu_social_hover_links_bg":"","ocean_menu_social_links_color":"","ocean_menu_social_hover_links_color":"","ocean_disable_title":"default","ocean_disable_heading":"default","ocean_post_title":"","ocean_post_subheading":"","ocean_post_title_style":"","ocean_post_title_background_color":"","ocean_post_title_background":0,"ocean_post_title_bg_image_position":"","ocean_post_title_bg_image_attachment":"","ocean_post_title_bg_image_repeat":"","ocean_post_title_bg_image_size":"","ocean_post_title_height":0,"ocean_post_title_bg_overlay":0.5,"ocean_post_title_bg_overlay_color":"","ocean_disable_breadcrumbs":"default","ocean_breadcrumbs_color":"","ocean_breadcrumbs_separator_color":"","ocean_breadcrumbs_links_color":"","ocean_breadcrumbs_links_hover_color":"","ocean_display_footer_widgets":"default","ocean_display_footer_bottom":"default","ocean_custom_footer_template":"","ocean_post_oembed":"","ocean_post_self_hosted_media":"","ocean_post_video_embed":"","ocean_link_format":"","ocean_link_format_target":"self","ocean_quote_format":"","ocean_quote_format_link":"post","ocean_gallery_link_images":"on","ocean_gallery_id":[],"footnotes":""},"categories":[12],"tags":[],"class_list":["post-2740","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-bakalarske-prace","entry","has-media"],"_links":{"self":[{"href":"https:\/\/cyberawareness.sk\/en\/wp-json\/wp\/v2\/posts\/2740","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/cyberawareness.sk\/en\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/cyberawareness.sk\/en\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/cyberawareness.sk\/en\/wp-json\/wp\/v2\/users\/8"}],"replies":[{"embeddable":true,"href":"https:\/\/cyberawareness.sk\/en\/wp-json\/wp\/v2\/comments?post=2740"}],"version-history":[{"count":11,"href":"https:\/\/cyberawareness.sk\/en\/wp-json\/wp\/v2\/posts\/2740\/revisions"}],"predecessor-version":[{"id":3392,"href":"https:\/\/cyberawareness.sk\/en\/wp-json\/wp\/v2\/posts\/2740\/revisions\/3392"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/cyberawareness.sk\/en\/wp-json\/wp\/v2\/media\/2397"}],"wp:attachment":[{"href":"https:\/\/cyberawareness.sk\/en\/wp-json\/wp\/v2\/media?parent=2740"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/cyberawareness.sk\/en\/wp-json\/wp\/v2\/categories?post=2740"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/cyberawareness.sk\/en\/wp-json\/wp\/v2\/tags?post=2740"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}