发明名称 |
METHODS, SYSTEMS, AND COMPUTER READABLE MEDIA FOR DETECTING A COMPROMISED COMPUTING HOST |
摘要 |
Methods, systems, and computer readable media for detecting a compromised computing host are disclosed. According to one method, the method includes receiving one or more domain name system (DNS) non- existent domain (NX) messages associated with a computing host. The method also includes determining, using a host score associated with one or more unique DNS zones or domain names included in the one or more DNS NX messages, whether the computing host is compromised. The method further includes performing, in response to determining that the computing host is compromised, a mitigation action. |
申请公布号 |
WO2014138205(A3) |
申请公布日期 |
2016.06.02 |
申请号 |
WO2014US20683 |
申请日期 |
2014.03.05 |
申请人 |
THE UNIVERSITY OF NORTH CAROLINA AT CHAPEL HILL |
发明人 |
MONROSE, FABIAN;TAYLOR, TERYL;KRISHNAN, SRINIVAS;MCHUGH, JOHN |
分类号 |
H04L12/26;H04L12/28 |
主分类号 |
H04L12/26 |
代理机构 |
|
代理人 |
|
主权项 |
|
地址 |
|