Skip to main content
SpringerLink
Log in
SpringerLink
Log in

Domain Name Detection and Classification Using Deep Neural Networks

  • Conference paper
  • First Online:
Security in Computing and Communications (SSCC 2018)

Part of the book series: Communications in Computer and Information Science ((CCIS,volume 969))

Included in the following conference series:

Abstract

The malware families uses Domain Generated Algorithms (DGA) to generate and register different domains to connect to the command and Control server. To improve the automated analysis of DGA-based malware, we have developed an analysis system for detection and classification of DGA’s. In this paper we proposed to take a string of characters as input given in the domain names and classify them as either benign or malicious domain name using deep learning architectures such as Long Short Term Memory (LSTM) and Bidirectional LSTM. We have used the data set given by shared task on Detecting Malicious Domain names (DMD 2018). We have developed a system for both binary and multiclass classification task to detect the malicious domain names. We have observed that the proposed model for binary classification performed better than multiclass classification.

This is a preview of subscription content, log in via an institution to check access.

Access this chapter

Log in via an institution
Chapter
USD 29.95
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
eBook
USD 84.99
Price excludes VAT (USA)
  • Available as EPUB and PDF
  • Read on any device
  • Instant download
  • Own it forever
Softcover Book
USD 109.99
Price excludes VAT (USA)
  • Compact, lightweight edition
  • Dispatched in 3 to 5 business days
  • Free shipping worldwide - see info

Tax calculation will be finalised at checkout

Purchases are for personal use only

Institutional subscriptions

References

  1. https://github.com/baderj/domain generation algorithms

  2. http://osint.bambenekconsulting.com/feeds/

  3. https://data.netlab.360.com/dga/

  4. http://www.acn-conference.org/sscc2018/

  5. http://icacci-conference.org/2018/

  6. https://github.com/vinayakumarr/DMD2018

  7. Does Alexa have a list of its top-ranked websites? https://support.alexa.com

  8. OpenDNS domain list. https://umbrella.cisco.com/blog

  9. Le, H., Pham, Q., Sahoo, D., Hoi, S.C.: URLnet: Learning a URL representation with deep learning for malicious URL detection. arXiv preprint arXiv:1802.03162 (2018)

  10. Mohan, V.S., Vinayakumar, R., Soman, K., Poornachandran, P.: SPOOF net: syntactic patterns for identification of ominous online factors. In: 2018 IEEE Security and Privacy Workshops (SPW), pp. 258–263. IEEE (2018)

    Google Scholar 

  11. Vinayakumar, R., Soman, K.P.: Applying traditional machine learning and deep learning models to detect and categorize DGA. Big Data Eng. Appl. (2018, under-review)

    Google Scholar 

  12. Sahoo, D., Liu, C., Hoi, S.C.: Malicious URL detection using machine learning: a survey. arXiv preprint arXiv:1701.07179 (2017)

  13. Vinayakumar, R., Poornachandran, P., Soman, K.P.: Scalable framework for cyber threat situational awareness based on domain name systems data analysis. In: Roy, S.S., Samui, P., Deo, R., Ntalampiras, S. (eds.) Big Data in Engineering Applications. SBD, vol. 44, pp. 113–142. Springer, Singapore (2018). https://doi.org/10.1007/978-981-10-8476-8_6

    Chapter  Google Scholar 

  14. Vinayakumar, R., Soman, K., Poornachandran, P.: Detecting malicious domain names using deep learning approaches at scale. J. Intell. Fuzzy Syst. 34(3), 1355–1367 (2018)

    Article  Google Scholar 

  15. Vinayakumar, R., Soman, K., Poornachandran, P., Sachin Kumar, S.: Evaluating deep learning approaches to characterize and classify the DGAs at scale. J. Intell. Fuzzy Syst. 34(3), 1265–1276 (2018)

    Article  Google Scholar 

  16. Vinayakumar R, Soman KP, P.P.: BigCogNet: big data based cognitive security system for an organization. In: Alazab, M., Tang, M.J. (eds.) Deep Learning Applications for Cyber Security, Advanced Sciences and Technologies for Security Applications (under-review)

    Google Scholar 

  17. Vinayakumar, R, Soman KP, P.P., Menon, P.: A deep-dive on Machine learning for Cybersecurity use cases. In: Machine Learning for Computer and Cyber Security: Principle, Algorithms, and Practices. CRC Press (In Press)

    Google Scholar 

  18. Woodbridge, J., Anderson, H.S., Ahuja, A., Grant, D.: Predicting domain generation algorithms with long short-term memory networks. arXiv preprint arXiv:1611.00791 (2016)

  19. Yu, B., Pan, J., Hu, J., Nascimento, A., De Cock, M.: Character level based detection of DGA domain names. In: ICLR (2018). To appear

    Google Scholar 

  20. Zeng, F., Chang, S., Wan, X.: Classification for DGA-based malicious domain names with deep learning architectures. Int. J. Intell. Inf. Syst. 6(6), 67 (2017)

    Google Scholar 

Download references

Acknowledgment

We would like to thank the management of SSN College of Engineering for funding GPU system, which helps us to carry out the deep learning related research work.

Author information

Authors and Affiliations

  1. Department of CSE, SSN College of Engineering, Chennai, India

    B. Bharathi & J. Bhuvana

Authors
  1. B. Bharathi
    View author publications

    You can also search for this author in PubMed Google Scholar

  2. J. Bhuvana
    View author publications

    You can also search for this author in PubMed Google Scholar

Corresponding author

Correspondence to B. Bharathi .

Editor information

Editors and Affiliations

  1. Technology and Management, Indian Institute of Information, Kerala, India

    Sabu M. Thampi

  2. Department of Computer Science, Missouri University of Science and Technology, Rolla, MO, USA

    Sanjay Madria

  3. Guangzhou University, Guangzhou, China

    Guojun Wang

  4. Howard University, Washington, DC, USA

    Danda B. Rawat

  5. University of the West of Scotland, Paisley, Glasgow, UK

    Jose M. Alcaraz Calero

Rights and permissions

Reprints and permissions

Copyright information

© 2019 Springer Nature Singapore Pte Ltd.

About this paper

Check for updates. Verify currency and authenticity via CrossMark

Cite this paper

Bharathi, B., Bhuvana, J. (2019). Domain Name Detection and Classification Using Deep Neural Networks. In: Thampi, S., Madria, S., Wang, G., Rawat, D., Alcaraz Calero, J. (eds) Security in Computing and Communications. SSCC 2018. Communications in Computer and Information Science, vol 969. Springer, Singapore. https://doi.org/10.1007/978-981-13-5826-5_53

Download citation

  • DOI: https://doi.org/10.1007/978-981-13-5826-5_53

  • Published:

  • Publisher Name: Springer, Singapore

  • Print ISBN: 978-981-13-5825-8

  • Online ISBN: 978-981-13-5826-5

  • eBook Packages: Computer ScienceComputer Science (R0)

Publish with us

Policies and ethics

Search

Navigation