GSoC/GCI Archive
Google Summer of Code 2010 The Honeynet Project

My proposal for infected host detection through DNS analysis

by Swen Yang for The Honeynet Project

In this proposal, I demonstrate my specified ideas on how to detect infected hosts through DNS analysis, including using a bad domains list, IP reputation records, infected hosts list etc. The goal is to build up an efficient and accurate detection mechanism.