IJCTT-International Journal of Computer Trends and Technology
The authors have conducted a systematic study on the feasibility of solely using DNS queries for massive-scale stealthy communication among entities on the Internet. Attackers, in particular botnet controllers, use secret messaging systems to set up large-scale command and control. In order to systematically understand the potential capability of attackers, they investigate the practicable of using Domain Name Service (DNS) as a stealthy botnet command-and-control channel. They explain and quantitatively analyze several techniques that can be used to effectively hide malicious DNS activities at the network level.