Patenton — panteon of patents

(19)

RU

(11)

2 668 710

(13)

C1

(51)

IPC

G06F21/00(2013-01-01)

H04L29/02(2006-01-01)

(21) (22)

Application

2018101759, 2018-01-17

(24)

Start date

2018-01-17

(22)

Actual filing date

2018-01-17

(45)

Published

2018-10-02

(72)

Inventor

Kislitsin Nikita Igorevich

(73)

Holder

Group-Ib Tds Ltd.

COMPUTING DEVICE AND METHOD FOR DETECTING MALICIOUS DOMAIN NAMES IN NETWORK TRAFFIC Russian patent published in 2018 - IPC G06F21/00 H04L29/02 

Abstract RU 2668710 C1

FIELD: information technology.

SUBSTANCE: invention relates to devices, methods, and a machine-readable medium for domain name analysis. Device contains a communication module that provides a domain name from a source of domain names, analysis module that provides a domain name module from the communication module and analyzes each of the received domain names using a specified set of analysis techniques, ensuring that a given numerical value is assigned to each of a given set of domain name suspiciousness characteristics, corresponding to one of a given set of analysis techniques, for each analyzed domain name, depending on the results of its analysis using specified analysis techniques, processing module that provides the analysis module with signs of suspicion with the numerical values assigned to them for each domain name and analysis using a specified set of analysis techniques to ensure that each domain name is assigned to malicious domain names if the results of the analysis of suspiciousness characteristics are characteristic of malicious domain names.

EFFECT: technical result is higher accuracy of detection of malicious domain names in network traffic.

31 cl, 2 dwg

Similar patents RU2668710C1

Title Year Author Number
MALWARE FILES IN NETWORK TRAFFIC DETECTION SERVER AND METHOD 2018
  • Kislitsin Nikita Igorevich
  • Andreev Nikolay Nikolaevich
 RU2680736C1
COMPUTING APPARATUS AND METHOD FOR IDENTIFYING COMPROMISED APPARATUSES BASED ON DNS TUNNELLING DETECTION 2021
  • Afonin Anton Viktorovich
 RU2777348C1
METHOD AND A COMPUTING DEVICE FOR DETECTING SUSPICIOUS USERS IN MESSAGING SYSTEMS 2018
  • Kalinin Aleksandr Sergeevich
  • Astanov Zafar Takhirovich
 RU2708508C1
SYSTEM AND METHOD FOR ACTIVE DETECTION OF MALICIOUS NETWORK RESOURCES 2021
  • Volkov Dmitrij Aleksandrovich
  • Prudkovskij Nikolaj Sergeevich
 RU2769075C1
METHOD AND A COMPUTER FOR INFORMING ON MALICIOUS WEB RESOURCES 2018
  • Kalinin Alexander Sergeevich
 RU2701040C1
SYSTEM AND METHOD FOR OUTSIDE CONTROL OF THE CYBERATTACK SURFACE 2021
  • Bobak Tim Dzhon Oskar
  • Volkov Dmitrij Aleksandrovich
 RU2778635C1
METHOD AND COMPUTING DEVICE FOR DETECTING TARGET MALICIOUS WEB RESOURCE 2022
  • Rozhnov Ilia Olegovich
 RU2791824C1
METHOD AND SYSTEM FOR DETECTING THE INFRASTRUCTURE OF A MALICIOUS SOFTWARE OR A CYBERCRIMINAL 2020
  • Volkov Dmitrij Aleksandrovich
  • Mileshin Filipp Alekseevich
 RU2722693C1
METHOD AND SYSTEM FOR SEARCHING FOR SIMILAR MALWARE BASED ON RESULTS OF THEIR DYNAMIC ANALYSIS 2020
  • Prudkovskij Nickolay Sergeevich
  • Volkov Dmitry Aleksandrovich
 RU2738344C1
SYSTEM AND METHOD OF AUTOGENERATION OF DECISION RULES FOR INTRUSION DETECTION SYSTEMS WITH FEEDBACK 2016
  • Kislitsin Nikita Igorevich
 RU2634209C1

RU 2 668 710 C1

Authors

Kislitsin Nikita Igorevich

Dates

2018-10-02Published

2018-01-17Filed

download Download PDF read Similar patents