Abuse of Cloud-Based and Public Legitimate Services as Command-and-Control (C&amp;C) Infrastructure: A Systematic Literature Review

Al lelah, Turki; Theodorakopoulos, George; Reinecke, Philipp; Javed, Amir; Anthi, Eirini

doi:10.3390/jcp3030027

Search citation statements

Order By: Relevance

Paper Sections

Select...

Citation Types

Supporting

Mentioning

Contrasting

Year Published

2023

2024

Publication Types

Select...

Other2

Article1

Book1

Relationship

Self Cite0

Independent4

Authors

Journals

Cited by 4 publications

References 34 publications

(68 reference statements)

Supporting

Mentioning

Contrasting

Order By: Relevance

Study and Verification of Covert Channels for Process Layer Network in Smart Substations

Mu,

Zhang,

et al. 2023

2023 IEEE 7th Conference on Energy Internet and Energy System Integration (EI2)

View full text Add to dashboard Cite

Study and Verification of Covert Channels for Process Layer Network in Smart Substations

Mu,

Zhang,

et al. 2023

2023 IEEE 7th Conference on Energy Internet and Energy System Integration (EI2)

View full text Add to dashboard Cite

Using DNS Patterns for Automated Cyber Threat Attribution

Leite,

Den Hartog,

dos Santos

2024

Proceedings of the 19th International Conference on Availability, Reliability and Security

View full text Add to dashboard Cite

Multimodel Collaboration to Combat Malicious Domain Fluxing

Nie,

Liu,

Qian

et al. 2023

Electronics

View full text Add to dashboard Cite

This paper proposes a novel domain-generation-algorithm detection framework based on statistical learning that integrates the detection capabilities of multiple heterogeneous models. The framework includes both traditional machine learning methods based on artificial features and deep learning methods, comprehensively analyzing 34 artificial features and advanced features extracted from deep neural networks. Additionally, the framework evaluates the predictions of the base models based on the fit of the samples to each type of sample set and a predefined significance level. The predictions of the base models are statistically analyzed, and the final decision is made using strategies such as voting, confidence, and credibility. Experimental results demonstrate that the DGA detection framework based on statistical learning achieves a higher detection rate compared to the underlying base models, with accuracy, precision, recall, and F1 scores reaching 0.979, 0.977, 0.981, and 0.979, respectively. The framework also exhibits a stronger adaptability to unknown domains and a certain level of robustness against concept drift attacks.

show abstract

Abuse of Cloud-Based and Public Legitimate Services as Command-and-Control (C&C) Infrastructure: A Systematic Literature Review

Cited by 4 publications

References 34 publications

Study and Verification of Covert Channels for Process Layer Network in Smart Substations

Study and Verification of Covert Channels for Process Layer Network in Smart Substations

Using DNS Patterns for Automated Cyber Threat Attribution

Multimodel Collaboration to Combat Malicious Domain Fluxing

Contact Info

Product

Resources

About