On resemblance of domain names: Clustering versus malicious actors

Ševčík, Ondřej

CS SKLog in Log in (EduId)

Theses 7mm6aq

On resemblance of domain names: Clustering versus malicious actors – Bc. Ondřej Ševčík

Bc. Ondřej Ševčík

Bachelor's thesis

On resemblance of domain names: Clustering versus malicious actors

Abstract:

Tato práce představuje nový systém, který využívá shlukování plně kvalifikovaných doménových jmen (FQDNs) na základě podobnosti řetězců. Jejím cílem je zlepšit odhalování škodlivých kampaní a tím pomoci bezpečnostním analytikům při investigaci. Navržený systém nabízí možnost výrazně redukovat množiny možných hrozeb na jednodušeji zpracovatelné menšiny. Zatímco velká část existující literatury se zaměřuje …more

Abstract:

This thesis introduces a novel system that employs string similarity-based clustering of Fully Qualified Domain Names (FQDNs). Its objective is to improve the discovery of malicious campaigns, thereby assisting security analysts in their investigations. The proposed approach offers the ability to reduce sets of suspected threats to manageable minorities significantly. While much of the existing literature …more

Keywords

FQDN clustering similarity-based clustering character-based text clustering predictive threat mitigation malicious campaign prevention domain name clustering

Language used: English

Date on which the thesis was submitted / produced: 18. 5. 2023

Identifier: https://is.muni.cz/th/gzicd/

Thesis defence

Date of defence: 28. 6. 2023
Supervisor: Mgr. Pavel Novák
Reader: Ing. Jan Zíka

Citation record

Cite this text

ISO 690-compliant citation record:

ŠEVČÍK, Ondřej. \textit{On resemblance of domain names: Clustering versus malicious actors}. Online. Bachelor's thesis. Brno: Masaryk University, Faculty of Informatics. 2023. Available from: https://theses.cz/id/7mm6aq/.

{{Citace kvalifikační práce
 | příjmení = Ševčík
 | jméno = Ondřej
 | instituce = Masaryk University, Faculty of Informatics
 | titul = On resemblance of domain names: Clustering versus malicious actors
 | url = https://theses.cz/id/7mm6aq/
 | typ práce = Bachelor's thesis
 | vedoucí = Mgr. Pavel Novák
 | rok = 2023
 | počet stran =
 | strany =
 | citace = 2024-11-12
 | poznámka =
 | jazyk = 
}}

Full text of thesis

Contents of on-line thesis archive

Published in Theses:

světu

Other ways of accessing the text

Institution archiving the thesis and making it accessible: Masarykova univerzita, Fakulta informatiky

Reference to the local database directory of the institution

Masaryk University

Faculty of Informatics

Bachelor programme / field:
Informatics / Informatics

Theses on a related topic

Evaluation of Multiple Clustering Algorithms on Insurance Datasets
Kryštof Suchánek
Clustering of Mobile Devices Based on Their Security State
Dáša Pawlasová
User Sessions Clustering and Anomaly Detection
Michal Mokroš
Interpretable clustering of turtle graphics programs
Zuzana Ďurčeková
Remuneration Schemes for Individual Prosumers in the EU – understanding the comparison of clustering results
Khatia Shaverdashvili
Comparison of methods for clustering convolutional neural network intercomputation values with respect to explainability
Adrián Bindas
Extension of clustering analysis tool for cybersecurity exercises
Tomáš Ondruško
Explaining convolutional neural network using clustering methods
Adam Bajger

All theses