Tracking DDoS attacks: Insights into the business of disrupting the web

5th USENIX Workshop on Large-Scale Exploits and Emergent Threats, LEET 2012: Botnets, Spyware, Worms, New Emerging Threats, and More

Volumn , Issue , 2012, Pages

  Büscher, Armin ^a   Holz, Thorsten ^b  

^a Websense Security Labs   (United States)

^b RUHR UNIVERSITY BOCHUM   (Germany)

Author keywords

[No Author keywords available]

Indexed keywords

BOTNET; COMPUTER VIRUSES; NETWORK SECURITY;

BOTNETS; COMMAND AND CONTROL; DDOS ATTACK; DISTRIBUTED DENIAL OF SERVICE ATTACK; EMPIRICAL DATA; EMPIRICAL STUDIES;

DENIAL-OF-SERVICE ATTACK;

EID: 85084096147     PISSN: None     EISSN: None     Source Type: Conference Proceeding    
DOI: None     Document Type: Conference Paper

References (25)

1. M. Bailey, J. Oberheide, J. Andersen, Z. M. Mao, F. Jahanian, and J. Nazario. Automated Classification and Analysis of Internet Malware. In Symposium on Recent Advances in Intrusion Detection (RAID), 2007.
2. U. Bayer, A. Moser, C. Kruegel, and E. Kirda. Dynamic Analysis of Malicious Code. Journal in Computer Virology, 2(1), 2006.
3. J. Caballero, C. Grier, C. Kreibich, and V. Paxson. Measuring Pay-per-Install: The Commoditization of Malware Distribution. In USENIX Security Symposium, 2011.
4. R. K. C. Chang. Defending Against Flooding-based Distributed Denial-of-Service Attacks: A Tutorial. IEEE Communications Magazine, 40, 2002.
5. C. Y. Cho, J. Caballero, C. Grier, V. Paxson, and D. Song. Insights from the Inside: A View of Botnet Management from Infiltration. In USENIX Workshop on Large-Scale Exploits and Emergent Threats (LEET), 2010.
6. E. Cooke, F. Jahanian, and D. McPherson. The Zombie Roundup: Understanding, Detecting, and Disrupting Botnets. In USENIX Workshop on Steps to Reducing Unwanted Traffic on the Internet (SRUTI), 2005.
7. D. Dittrich. The DoS Project’s’trinoo’ distributed denial of service attack tool. http://staff.washington.edu/dittrich/misc/ trinoo.analysis, Oct. 1999.
8. F. C. Freiling, T. Holz, and G. Wicherski. Botnet Tracking: Exploring a Root-Cause Methodology to Prevent Distributed Denial-of-Service Attacks. In European Symposium on Research in Computer Security (ESORICS), 2005.
9. Hispasec Sistemas S.L. VirusTotal Malware Intelligence Service. https://www.virustotal.com, 2011.
10. T. Holz, M. Steiner, F. Dahl, E. Biersack, and F. C. Freiling. Measurements and Mitigation of Peer-to-Peer-based Botnets: A Case Study on Storm Worm. In USENIX Workshop on Large-Scale Exploits and Emergent Threats (LEET), 2008.
11. C. Jin, H. Wang, and K. G. Shin. Hop-count filtering: an effective defense against spoofed DDoS traffic. In ACM Conference on Computer and Communications Security (CCS), 2003.
12. S. Kandula, D. Katabi, M. Jacob, and A. Berger. Botz-4-Sale: Surviving Organized DDoS Attacks That Mimic Flash Crowds. In USENIX Symposium on Networked Systems Design and Implementation, 2005.
13. C. Kreibich, C. Kanich, K. Levchenko, B. Enright, G. M. Voelker, V. Paxson, and S. Savage. On the Spam Campaign Trail. In USENIX Workshop on Large-Scale Exploits and Emergent Threats (LEET), 2008.
14. J. Mirkovic and P. L. Reiher. A taxonomy of DDoS attack and DDoS defense mechanisms. Computer Communication Review, 34(2), 2004.
15. C. Nunnery, G. Sinclair, and B. B. Kang. Tumbling Down the Rabbit Hole: Exploring the Idiosyncrasies of Botmaster Systems in a Multi-Tier Botnet Infrastructure. In USENIX Workshop on Large-Scale Exploits and Emergent Threats (LEET), 2010.
16. V. Paxson. An Analysis of Using Reflectors for Distributed Denial-of-Service Attacks. Computer Communication Review, 31, 2001.
17. P. Porras, H. Saïdi, and V. Yegneswaran. A Foray Into Conficker’s Logic and Rendezvous Points. In USENIX Workshop on Large-Scale Exploits and Emergent Threats (LEET), 2009.
18. M. A. Rajab, L. Ballard, P. Mavrommatis, N. Provos, and X. Zhao. The Nocebo Effect on the Web: An Analysis of Fake Anti-Virus Distribution. In USENIX Workshop on Large-Scale Exploits and Emergent Threats (LEET), 2010.
19. M. A. Rajab, J. Zarfoss, F. Monrose, and A. Terzis. A Multifaceted Approach to Understanding the Botnet Phenomenon. In Internet Measurement Conference, 2006.
20. D. Song, D. Brumley, H. Yin, J. Caballero, I. Jager, M. G. Kang, Z. Liang, N. James, P. Poosankam, and P. Saxena. BitBlaze: A New Approach to Computer Security via Binary Analysis. In International Conference on Information Systems Security (ICISS), 2008.
21. D. X. Song and A. Perrig. Advanced and Authenticated Marking Schemes for IP Traceback. In IEEE Conference on Computer Communications, 2001.
22. B. Stone-Gross, M. Cova, L. Cavallaro, R. Gilbert, M. Szydlowski, R. Kemmerer, C. Kruegel, and G. Vigna. Your Botnet is My Botnet: Analysis of a Botnet Takeover. In ACM Conference on Computer and Communications Security (CCS), 2009.
23. B. Stone-Gross, T. Holz, G. Stringhini, and G. Vigna. The Underground Economy of Spam: A Botmaster’s Perspective of Coordinating Large-Scale Spam Campaigns. In USENIX Workshop on Large-Scale Exploits and Emergent Threats (LEET), 2011.
24. The Sydney Morning Herald. Dirty dealings and DirtJumper. http://bit.ly/A0CVYP, 2012.
25. A. Yaar, A. Perrig, and D. Song. Pi: A Path Identification Mechanism to Defend Against DDoS Attacks. In IEEE Symposium on Security and Privacy, 2003.