• A
  • A
  • A
  • ABC
  • ABC
  • ABC
  • А
  • А
  • А
  • А
  • А
Regular version of the site
For visually-impairedFor visually-impairedUser profile (HSE staff only)Search
Advanced search
Menu
HSE University

Detecting Malware Domain Names Using Machine Learning

Student: Kulakov Aleksandr

Supervisor: Petr Baranov

Faculty: Graduate School of Business

Educational Programme: Big Data Systems (Master)

Year of Graduation: 2019

Today botnets are becoming more sophisticated and use DGA algorithms to generate domain names for command and control servers (C&C). The main reason for using this approach is to avoid protection against classic security tools such as firewall and IPS. The problem of detecting such names is quite popular today and many researchers have tried to solve it in various ways but using Machine Learning algorithms provides an opportunity to improve detecting and do it in real time. This paper presents an attempt to thoroughly investigate Logistic Regression, SVM, Random Forest, Decision Tree algorithms, evaluate them on the DGA dataset and create a security system module for detecting malicious domains in real time.

Student Theses at HSE must be completed in accordance with the University Rules and regulations specified by each educational programme.

Summaries of all theses must be published and made freely available on the HSE website.

The full text of a thesis can be published in open access on the HSE website only if the authoring student (copyright holder) agrees, or, if the thesis was written by a team of students, if all the co-authors (copyright holders) agree. After a thesis is published on the HSE website, it obtains the status of an online publication.

Student theses are objects of copyright and their use is subject to limitations in accordance with the Russian Federation’s law on intellectual property.

In the event that a thesis is quoted or otherwise used, reference to the author’s name and the source of quotation is required.

Search all student theses