• Tidak ada hasil yang ditemukan

Analyze Bonet Activity By Identify The Difference Between Normal And Abnormal DNS Traffic.

N/A
N/A
Info
Unduh - Bebas
Protected

Academic year: 2017

Membagikan "Analyze Bonet Activity By Identify The Difference Between Normal And Abnormal DNS Traffic."

Copied!
24
0
0

Memuat.... (Lihat teks lengkap sekarang)

Unduh sekarang ( 24 Halaman )

Teks penuh

(1)
(2)
(3)
(4)
(5)
(6)
(7)

v

ABSTRACT

This project is focus on the difference between normal DNS traffic and abnormal DNS traffic that made by the botnet. Botnet is software robot that is hardcoded by the botmaster or owner of the bot that has mission need to be accomplished. Victim of the botnet will faced consequence such as denial of service. This project analyzed the DNS traffic by focus on the numbers of query response. Query response for normal DNS traffic is less than the botnet DNS traffic because botnet like to contact its server more frequently than the normal DNS traffic. To get the network traffic, lab had been setup based on network setup configuration that had been planned for this project. Server was used to capture the network traffic and some workstations used to run the botnet for botnet DNS traffic and windows update for normal DNS network. There are some techniques to detect botnet, in this project detection of botnet is using anomaly-based technique. Network traffic will be captured for both botnet DNS network and normal DNS network. Three different network traffic had been captured which were botnet DNS network, normal DNS network and combination of botnet and normal DNS network. From the captured network traffic, analysis had been made and criteria involved were time the botnet active, number ofNXDomain and CNAME rcode for the query response and the time interval for the botnet request at the DNS server. To get clear information to the DNS query response, graph was created for all the botnet DNS traffic and normal DNS traffic in the analysis phase. To confirmed output in the analysis phase, testing had been made to compare it. Conclusion for the project is to conclude that the project met all objectives that had been planned before or not.

(8)
(9)
(10)
(11)
(12)
(13)
(14)
(15)
(16)
(17)
(18)
(19)
(20)
(21)
(22)
(23)
(24)

Referensi

Unduh sekarang ( PDF - 24 Halaman - 4.72 MB )

Garis besar

Analyze Bonet Activity By Identify The Difference Between Normal And Abnormal DNS Traffic.

Dokumen terkait

THE DIFFERENCE OF ACHIEVEMENT BETWEEN THE STUDENTS TAUGHT BY CONTEXTUAL TEACHING AND LEARNING (CTL) AND DIRECT INSTRUCTION IN MATHEMATICS GRADE VIII OF SMPN 1 TANJUNG MORAWA ACADEMIC YEAR OF 2013/2014.

“ The Difference of Achievement Between the Students taught by Contextual Teaching and Learning (CTL) and Direct Instruction in Mathematics Grade VIII of SMP N 1 Tanjung

THE DIFFERENCE OF STUDENT LEARNING OUTCOME AND ACTIVITY BETWEEN THINK PAIR SHARE AND NUMBERED HEAD TOGETHER MODEL ON HUMAN REPRODUCTIVE SYSTEM IN CLASS XI SMA NEGERI 11 MEDAN ACADEMIC YEAR 2013/2014.

The difference of student learning activity that taught by using Think Pair Share and Numbered Head Together Type on Topic Human Reproductive System in class

IMPROVING THE VIII-C STUDENTS’ READING COMPREHENSION ACHIEVEMENT AND THEIR ACTIVE PARTICIPATION BY USING DIRECTED READING-THINKING ACTIVITY (DR-TA) STRATEGY AT SMPN 5 TANGGUL IN THE 2010/2011 ACADEMIC YEAR

This thesis entitled “Improving the VIII-C students’ Reading Comprehension Achievement and Their Active Participation by Using Directed Reading- Thinking Activity

THE COMPARATIVE STUDY BETWEEN THE STUDENTS’ MASTERY IN VOCABULARY BY LISTENING ENGLISH SONG AND TOTAL PHYSICAL RESPONSE APPLICATION AT THE SEVENTH GRADE STUDENTS OF MTS AS- SYIFA WAL’AIN BONDAN INDRAMAYU - IAIN Syekh Nurjati Cirebon

Beside that the writer knows that in teaching vocabulary by using listening English songs and Total physical response are very influential and with them students

Motivation. The duct flows of Chap. 6 were driven by a pressure difference between the ends of the duct. Such channels are closed and full of fluid, either gas or liquid.

Critical Uniform Flow: The Critical Slope Part a Part b By comparing the actual depth and velocity with the critical values, we can deter- mine the local flow condition y yc, V Vc:

The boundaries of passage territories tend to be defined by the frequency and length of time needed for an activity instead of the relative proximity between certain spaces

Figure 4 illustrates the dwelling space of S from left: shared water source and bathroom, sitting space, S’s rented room, kitchen space and public toilet.. In performing the analysis of

View of STUDY THE PERFORMANCE EFFECT ON RC BEAMS BY USING FLY ASH AND SCC IN CONCRETE

The first validated RC beam was investigated for flexural response of concrete beams made with mixtures of 25% fly ash, ultra-high strength concrete, 50 and 100% re- cycled concrete

dp/dz= - ρ g When the variation of density with elevation is known the pressure difference between points 1 and 2 can be determined by integration to be

When the variation of density with elevation is known the pressure difference between points 1 and 2 can be determined by integration to be... Lifting of a large weight by a