Poster: recoverable botnets: a hybrid C&C approach

Authors:
Liao Peng;Cui Xiang;Li Shuhao;Liu Chaoge
Affiliations:
Institute of Computing Technology, Chinese Academy of Sciences, Beijng, China;Institute of Computing Technology, Chinese Academy of Sciences, Beijing, China;Institute of Computing Technology, Chinese Academy of Sciences, Beijing, China;Institute of Computing Technology, Chinese Academy of Sciences, Beijing, China
Venue:
Proceedings of the 18th ACM conference on Computer and communications security
Year:
2011

Citing 3
Cited 0

An advanced hybrid peer-to-peer botnet

HotBots'07 Proceedings of the first conference on First Workshop on Hot Topics in Understanding Botnets
Overbot: a botnet protocol based on Kademlia

Proceedings of the 4th international conference on Security and privacy in communication netowrks
Andbot: towards advanced mobile botnets

LEET'11 Proceedings of the 4th USENIX conference on Large-scale exploits and emergent threats

Quantified Score

Hi-index	0.00

Visualization

Abstract

In this paper, we introduce the design of Hybot, a botnet which could recover its command and control (C&C) channel in a tolerable delay in case most of critical resources are destroyed. Hybot exploits a hybrid C&C structure, hybrid P2P and URL Flux, to ensure both robustness and effectiveness. Our preliminary results show that the design of Hybot is feasible, consequently posing potential threat for Internet security. The goal of our work is to increase the understanding of advanced botnets which will promote the development of more efficient countermeasures.