Catching Modern Botnets Using Active Integrated Evidential Reasoning
Botnets are now recognized as one of the major security threats to start various security attacks (e.g., spamming, DDoS). Although substantial research has been done towards botnet detection, it is becoming much more difficult today, especially for highly polymorphic, intelligent and stealthy modern botnets. Traditional botnet detection (e.g., signature, anomaly or flow based) approaches cannot effectively detect modern botnets. In this paper, the authors propose a novel active integrated evidential reasoning approach called SeeBot to detect modern botnets.