appearance

MU › ICS › Research and development › Overview of publishing activities › Publication details

Masaryk University - Institute of Computer Science

Skip navigation

About the institute | Research and development | Services provided | News | Partners

Skip the Organizational structure panel
Organizational structure
On selecting a constituent part of MU the "Overview of publishing activities" page will be displayed with information relevant to the selected constituent part. The "Overview of publishing activities" page is not available for non-activated items.

Masaryk University
- Faculties
- Law
- Medicine
- Science
- Arts
- Education
- Economics
- Informatics
- Social Studies
- Sports Studies
- Rector`s Office
- Rectorate
- Institutes
- Computer Science
- CEITEC MU
- Specialized Units
- Hostels & Canteens
- University Press
- UCB Management
- Other Units
- Archive
- Language Centre
- International Studies
- Disabled Students
- Technology Transfer Office
- Biostatistics
- Mendel Museum
- CERIT
- CEITEC Central Management
- Telč Centre

Institute of Computer Science

Publication details

<< back

Chuck Norris botnet detection plugin

Basic information
Original title:	Chuck Norris botnet detection plugin
Authors:	Tomáš Plesník, Michal Trunečka, Pavel Piskač, Jan Vykopal, Pavel Čeleda

Further information
Citation:	PLESNÍK, Tomáš, Michal TRUNEČKA, Pavel PISKAČ, Jan VYKOPAL and Pavel ČELEDA. Chuck Norris botnet detection plugin. 2010.Export BibTeX @misc{915594, author = {Plesník, Tomáš and Trunečka, Michal and Piskač, Pavel and Vykopal, Jan and Čeleda, Pavel}, keywords = {Chuck Norris; NetFlow; detection; plugin; NfSen}, language = {eng}, institution = {Masarykova univerzita}, organization = {Masarykova univerzita}, title = {Chuck Norris botnet detection plugin}, url = {http://www.muni.cz/ics/research/cyber/chuck_norris_botnet}, year = {2010} }
Original language:	English
Field:	Informatics
WWW:	Webová stránka s instalačním balíčkem
Type:	Software
Keywords:	Chuck Norris; NetFlow; detection; plugin; NfSen

Chuck Norris botnet detection plugin for NfSen collector periodically analyses NetFlow data. The plugin provides output of detection methods aimed at botnet behaviour during its lifecycle: port scanning from infected hosts outside the local network, scanning from infected hosts in the local network, communication with the botnet distribution and control servers, and DNS spoofing.

Related projects:

Security of Czech army information and communication systems - On-line monitoring, Visualization and Packet Filtration. Computer Incident Response Capability Development in the Cyber Defence Environment

top