My proposal for infected host detection through DNS analysis
by Swen Yang for The Honeynet Project
In this proposal, I demonstrate my specified ideas on how to detect infected hosts through DNS analysis, including using a bad domains list, IP reputation records, infected hosts list etc. The goal is to build up an efficient and accurate detection mechanism.