• Botnet detection used fast-flux technique, based on adaptive dynamic evolving spiking neural network algorithm

      Almomani, Ammar; Nawasrah, Ahmad Al; Alauthman, Mohammad; Betar, Mohammed Azmi Al; Meziane, Farid; Al-Balqa Applied University, Irbid, Jordan; Taibah University, Median, Saudia Arabia; Zarqa University, Jordan; University of Derby (Inderscience, 2021-01-28)
      A botnet refers to a group of machines. These machines are controlled distantly by a specific attacker. It represents a threat facing the web and data security. Fast-flux service network (FFSN) has been engaged by bot herders for cover malicious botnet activities. It has been engaged by bot herders for increasing the lifetime of malicious servers through changing the IP addresses of the domain name quickly. In the present research, we aimed to propose a new system. This system is named fast flux botnet catcher system (FFBCS). This system can detect FF-domains in an online mode using an adaptive dynamic evolving spiking neural network algorithm. Comparing with two other related approaches the proposed system shows a high level of detection accuracy, low false positive and negative rates, respectively. It shows a high performance. The algorithm's proposed adaptation increased the accuracy of the detection. For instance, this accuracy reached (98.76%) approximately.