Unsupervised Detection of APT C&C Channels using Web Request Graphs.
DIMVA(2017)
摘要
HTTP is the main protocol used by attackers to establish a command and control (CC APT malware are often custom-built and used against selected targets only, making it difficult to collect malware artifacts for supervised machine learning and thus rendering supervised approaches ineffective at detecting APT traffic.
更多查看译文
关键词
Malware detection, Web request graph, Command and control channel, Click detection, Graph analysis, Advanced persistent threat
AI 理解论文
溯源树
样例
生成溯源树,研究论文发展脉络
Chat Paper
正在生成论文摘要