TY - GEN
T1 - The research of botnet detection and prevention
AU - Lee, Narn Yih
AU - Chiang, Hung Jen
PY - 2010
Y1 - 2010
N2 - Malwares have become a major threat in the Internet. Attackers intrude hosts by many different kinds of methods, such as social engineering, phishing, distributing viruses and worms. Users' computers and important servers are unaware that they are infected by malwares, and are still working. Therefore, it results in that malwares are spreading and infecting other computers. Besides, broad bandwidth networks and high speed computers make the botnets to work easier. This paper aims to propose Snort intrusion detecting system to detect and prevent the malicious bots. Some rules are designed to collect the normal and abnormal packets of the Internet Relay Chat (IRC) protocol. Then, some PHP programs are combined with Linux Netfilter/Iptables firewall to block the abnormal packets and warn system administrators.
AB - Malwares have become a major threat in the Internet. Attackers intrude hosts by many different kinds of methods, such as social engineering, phishing, distributing viruses and worms. Users' computers and important servers are unaware that they are infected by malwares, and are still working. Therefore, it results in that malwares are spreading and infecting other computers. Besides, broad bandwidth networks and high speed computers make the botnets to work easier. This paper aims to propose Snort intrusion detecting system to detect and prevent the malicious bots. Some rules are designed to collect the normal and abnormal packets of the Internet Relay Chat (IRC) protocol. Then, some PHP programs are combined with Linux Netfilter/Iptables firewall to block the abnormal packets and warn system administrators.
UR - http://www.scopus.com/inward/record.url?scp=79851468779&partnerID=8YFLogxK
UR - http://www.scopus.com/inward/citedby.url?scp=79851468779&partnerID=8YFLogxK
U2 - 10.1109/COMPSYM.2010.5685534
DO - 10.1109/COMPSYM.2010.5685534
M3 - Conference contribution
AN - SCOPUS:79851468779
SN - 9781424476404
T3 - ICS 2010 - International Computer Symposium
SP - 119
EP - 124
BT - ICS 2010 - International Computer Symposium
T2 - 2010 International Computer Symposium, ICS 2010
Y2 - 16 December 2010 through 18 December 2010
ER -