semantic exploration of dns
play

Semantic Exploration of DNS Samuel Marchal, J er ome Fran cois, - PowerPoint PPT Presentation

Nov 19, 2023 •31 likes •211 views

samuel.marchal@uni.lu 23/05/12 Semantic Exploration of DNS Samuel Marchal, J er ome Fran cois, Cynthia Wagner and Thomas Engel Motivation Semantic exploration Experiments and Results Conclusion Outline 1 Motivation 2 Semantic

  1. samuel.marchal@uni.lu 23/05/12 Semantic Exploration of DNS Samuel Marchal, J´ erˆ ome Fran¸ cois, Cynthia Wagner and Thomas Engel

  2. Motivation Semantic exploration Experiments and Results Conclusion Outline 1 Motivation 2 Semantic exploration 3 Experiments and Results 4 Conclusion 2 / 18

  3. Motivation Semantic exploration Experiments and Results Conclusion Outline 1 Motivation 2 Semantic exploration 3 Experiments and Results 4 Conclusion 3 / 18

  4. Motivation Semantic exploration Experiments and Results Conclusion Why DNS brute forcing ? DNS scanning: ◮ Test DNS names by sending requests to a DNS recursive server ◮ Network mapping: discover all machines of a domain ◮ penetration testing ◮ network security assessment (prevention) ◮ recon stage to craft attack (find accessible services) ◮ use by worms to spread themselves 4 / 18

  5. Motivation Semantic exploration Experiments and Results Conclusion Alternative to IP scanning ◮ Provided services (ftp, www, etc.) � = network interfaces ◮ Machines are not probed directly (DNS requests) ◮ Can be enhanced by using multiple open recursive servers ◮ Reduce the search space (particularly in IPv6) uni.lu DNS authoraitative WWW server R DNS recursive A server FTP R MAIL google.com WWW A FTP DNS DNS scanning IP scanning authoraitative MAIL server 5 / 18

  6. Motivation Semantic exploration Experiments and Results Conclusion Current Approaches ◮ How names are defined? ◮ by human and easy to remember → pc1, pc2, atlanta, boston, etc. ◮ to reflect the provided service → www, ftp, ssh, etc. ◮ → same names often used → scan the most popular names ◮ dictionary based tools ◮ DNSenum: 266 930 names by default ◮ fierce: 1 895 names by default ◮ tool relying on natural language ◮ SDBF: domain name generator (domain names features, Markov chain model) 6 / 18

  7. Motivation Semantic exploration Experiments and Results Conclusion Outline 1 Motivation 2 Semantic exploration 3 Experiments and Results 4 Conclusion 7 / 18

  8. Motivation Semantic exploration Experiments and Results Conclusion Names definition Domain names are given by human: ◮ Reflect a provided service (ftp, www, etc.) ◮ Follow numerical patterns (ftp1, ftp2) ◮ Share a common semantic field 8 / 18

  9. Motivation Semantic exploration Experiments and Results Conclusion Names discovery Given a subdomain ⇒ generate new subdomains: 9 / 18

  10. Motivation Semantic exploration Experiments and Results Conclusion Tool overview ◮ Generation of semantically close names ◮ name split in words ◮ generate similar words using Disco ◮ Enumeration of numbers marsserver1 uni.lu split mars server 1 www related numerical ftp SDBF ns1 names increment ns2 Fierce venus pc 2 marsserver1 neptun computer 3 DNSenum paris jupiter mail 4 london pc2room103 merge venuspc3.uni.lu jupitermail5.uni.lu 10 / 18

  11. Motivation Semantic exploration Experiments and Results Conclusion Semantic exploration: Disco Horizontal exploration surf 0 valid not valid disco rugby whitewater help reggae runner skate soccer surfing … ... 1 disco disco d i s c o Vertical exploration disco cricket football assistance football voleyball … ... aid … ... basketball … ... 2 hedgehog athlete broadcaster relay tunes …… . disco disco disco disco concolor announcer songs extensions … ... 3 badger …… . piglet …… . tune …… . disco disco 4 roadgoing mockingbird …… .. freestyle sprint …… .. 11 / 18

  12. Motivation Semantic exploration Experiments and Results Conclusion Outline 1 Motivation 2 Semantic exploration 3 Experiments and Results 4 Conclusion 12 / 18

  13. Motivation Semantic exploration Experiments and Results Conclusion Method and Results ◮ 24 popular domains ◮ 3 tools: DNSenum, Fierce, SDBF ⇒ initial list of subdomains % Imp i = | New i | | Init i | , i ∈ { SDBF , DNSenum , Fierce , overall } 13 / 18

  14. Motivation Semantic exploration Experiments and Results Conclusion Detailed Results SDBF Fierce DNSenum Overall Domains | Init | | New | % Imp | Init | | New | % Imp | Init | | New | % Imp | Init | | New | % Imp livejasmin.com 24 39 162 20 14 70 18 14 77 37 33 89 ebay.com 123 284 230 115 257 223 185 225 121 284 158 55 google.com 69 125 181 84 87 103 83 108 130 149 77 51 vdl.lu 15 15 100 11 13 118 16 12 75 23 11 47 amazon.com 78 82 105 55 72 130 75 75 100 132 52 39 msn.com 207 281 135 196 246 125 236 223 94 372 140 37 baidu.com 369 243 65 178 280 157 238 253 106 478 157 32 microsoft.com 115 121 105 91 90 98 97 98 101 189 56 29 apple.com 141 128 90 65 116 178 130 106 81 241 70 29 ask.com 88 82 93 78 65 83 79 71 89 135 40 29 all domains 2057 1739 84 1520 1558 102 1788 1565 87 3170 954 30 ◮ From 84% to 102% of newly discovered names ◮ Up to 230% of improvement ◮ Complementarity ⇒ 30 % overall improvement 14 / 18

  15. Motivation Semantic exploration Experiments and Results Conclusion Overhead ◮ Average of 40,000 probes per domain // SDBF & DNSenum: 260,000 (6 times less) 15 / 18

  16. Motivation Semantic exploration Experiments and Results Conclusion Outline 1 Motivation 2 Semantic exploration 3 Experiments and Results 4 Conclusion 16 / 18

  17. Motivation Semantic exploration Experiments and Results Conclusion Conclusion ◮ New methods to brute-force DNS: ◮ semantic relatedness ◮ incremental techniques ◮ Results: ◮ able to generate valid names... ◮ ... mainly not present in well used dictionaries → complementarity ◮ low overhead ◮ Future works: ◮ use other databases ◮ improve semantic relatedness metric 17 / 18

  18. samuel.marchal@uni.lu 23/05/12 Semantic Exploration of DNS Samuel Marchal, J´ erˆ ome Fran¸ cois, Cynthia Wagner and Thomas Engel

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Semantic Web 2008 Se a t c eb 008 Semantic Web ca. 2008 S ti W b 2008 Semantic Web

Semantic Web 2008 Se a t c eb 008 Semantic Web ca. 2008 S ti W b 2008 Semantic Web

Semantic Web 2008 Se a t c eb 008 Semantic Web ca. 2008 S ti W b 2008 Semantic Web companies starting & growing Siderean, SandPiper, SiberLogic, Ontology Works, Intellidimension, Intellisophic, TopQuadrant, Data Grid, Mondeca,

481 views • 23 slides
What the #%*&! is the Semantic Web? The Semantic Web is a collaborative movement led by

What the #%*&! is the Semantic Web? The Semantic Web is a collaborative movement led by

What the #%*&! is the Semantic Web? The Semantic Web is a collaborative movement led by international standards body the World Wide Web Consortium (W3C).[1] ... By encouraging the inclusion of semantic content in web pages, the

578 views • 44 slides
MEAP and ENB Exploration Exploration in MEAP Genesis of Exploration New Business

MEAP and ENB Exploration Exploration in MEAP Genesis of Exploration New Business

MEAP and ENB Exploration Exploration in MEAP Genesis of Exploration New Business opportunities Rift and Frontal fold belt knowledge transfer Play based approach in chosen themes Focus on North and East Africa Preserving

1.01k views • 59 slides
Semantic Similarity MultiJEDI ERC 259234 Semantic Similarity Semantic Similarity Mostly

Semantic Similarity MultiJEDI ERC 259234 Semantic Similarity Semantic Similarity Mostly

SemEval 2014 Task-3 Cross-Level Semantic Similarity MultiJEDI ERC 259234 Semantic Similarity Semantic Similarity Mostly focused on similar types of lexical items Semantic Similarity What if we have different types of inputs? CLSS:

971 views • 47 slides
Motivation Bootstrapping Semantic Lexicons A semantic lexicon contains semantic category Ex:

Motivation Bootstrapping Semantic Lexicons A semantic lexicon contains semantic category Ex:

Motivation Bootstrapping Semantic Lexicons A semantic lexicon contains semantic category Ex: dog, cat, lion, unannotated texts lizard, snake assignments for words. For example: blogger HUMAN sedan VEHICLE AK-47 WEAPON N best words

344 views • 8 slides
in Advanced . Exploration 1 . Note 1 : Advanced Exploration: Defined as confirmed

in Advanced . Exploration 1 . Note 1 : Advanced Exploration: Defined as confirmed

Investment Opportunity in Advanced . Exploration 1 . Note 1 : Advanced Exploration: Defined as confirmed mineralisation, immediate drill targets & exploration upside Duke Exploration / Investor Presentation 1 Disclaimer This

918 views • 26 slides
RDF, RDFS and OWL: Graph Data Models for the Semantic Web Semantic Web: The Idea Semantic

RDF, RDFS and OWL: Graph Data Models for the Semantic Web Semantic Web: The Idea Semantic

RDF, RDFS and OWL: Graph Data Models for the Semantic Web Semantic Web: The Idea Semantic Web does not mean computers are going to understand the meaning of everything on the web does mean that we can create some standards ways of

344 views • 33 slides
Acacia Mining plc Exploration Roundtable 11.12.2015 Exploration roundtable Investment in

Acacia Mining plc Exploration Roundtable 11.12.2015 Exploration roundtable Investment in

Acacia Mining plc Exploration Roundtable 11.12.2015 Exploration roundtable Investment in exploration beginning to deliver results Exploration historically focused on Tanzania Mature, well explored portfolio of projects Changed

498 views • 38 slides
Ralph Hodgson Realizing a semantic solution: Ontologies are like and unlike other IT models

Ralph Hodgson Realizing a semantic solution: Ontologies are like and unlike other IT models

Enterprise Architecture in SOA: Coverage Models and Methodologies Going Semantic Semantic technology May 23 rd , 2005 Enterprise architecture and semantic technology Enterprise architecture maturity model Capabilities of semantic

244 views • 9 slides
Semantic Analysis and Semantic Roles Ling 571 Deep Processing Techniques for NLP February 10,

Semantic Analysis and Semantic Roles Ling 571 Deep Processing Techniques for NLP February 10,

Semantic Analysis and Semantic Roles Ling 571 Deep Processing Techniques for NLP February 10, 2016 Roadmap Semantic Analysis Semantic attachments Extended example Quantifier scope Earley Parsing and Semantics

588 views • 15 slides
Semantic Processing Augmenting CFGs Currying Quantifier scope Semantic Grammars L445 / L545

Semantic Processing Augmenting CFGs Currying Quantifier scope Semantic Grammars L445 / L545

Semantic Processing Semantic Representation FOPC Inference Issues Description Logics Semantic Processing Semantic Processing Augmenting CFGs Currying Quantifier scope Semantic Grammars L445 / L545 Dept. of Linguistics, Indiana

585 views • 44 slides
Align, Disambiguate, and Walk A Unified Approach for Measuring Semantic Similarity Semantic

Align, Disambiguate, and Walk A Unified Approach for Measuring Semantic Similarity Semantic

Align, Disambiguate, and Walk A Unified Approach for Measuring Semantic Similarity Semantic Similarity; how similar are a pair of lexical items? Semantic Similarity Semantic Similarity Semantic Similarity Sentence level

1.42k views • 127 slides
Exploration and Function Approximation CMU 10703 Katerina Fragkiadaki This lecture Exploration

Exploration and Function Approximation CMU 10703 Katerina Fragkiadaki This lecture Exploration

Carnegie Mellon School of Computer Science Deep Reinforcement Learning and Control Exploration and Function Approximation CMU 10703 Katerina Fragkiadaki This lecture Exploration in Large Continuous State Spaces Exploration-Exploitation

1.21k views • 86 slides
Sequence-to-Action: End-to-End Semantic Graph Generation for Semantic Parsing Bo Chen , Le Sun,

Sequence-to-Action: End-to-End Semantic Graph Generation for Semantic Parsing Bo Chen , Le Sun,

Sequence-to-Action: End-to-End Semantic Graph Generation for Semantic Parsing Bo Chen , Le Sun, Xianpei Han Institute of Software, Chinese Academy of Sciences Task: Semantic Parsing Translate natural language sentences to meaning

1.4k views • 82 slides
Using the Semantic Web Mathieu dAquin q What is there to use on the Semantic Web? Web?

Using the Semantic Web Mathieu dAquin q What is there to use on the Semantic Web? Web?

Using the Semantic Web Mathieu dAquin q What is there to use on the Semantic Web? Web? Technologies Systems Systems Services Infrastructures I f t t Knowledge, information, data A lot of that Introduction to the

559 views • 29 slides
Semantic Analysis CMSC 35100 Natural Language Processing May 8, 2003 Roadmap Semantic

Semantic Analysis CMSC 35100 Natural Language Processing May 8, 2003 Roadmap Semantic

Semantic Analysis CMSC 35100 Natural Language Processing May 8, 2003 Roadmap Semantic Analysis Motivation: Understanding commands Approach I: Syntax-driven semantic analysis Augment productions with semantic component

333 views • 16 slides
Advanced PPC Frank Coyle & Joe Weller April 15 th , 2009 About Point It! Seattle-based

Advanced PPC Frank Coyle & Joe Weller April 15 th , 2009 About Point It! Seattle-based

Advanced PPC Frank Coyle & Joe Weller April 15 th , 2009 About Point It! Seattle-based Search Engine Marketing Firm Incorporated April 2002 Incorporated April 2002 SEO & PPC Point It Seminars Logistics This webinar

506 views • 46 slides
Venture Capital & Private Equity LATVIA PROBLEM: COMPANIES LACK EQUITY Benefits from

Venture Capital & Private Equity LATVIA PROBLEM: COMPANIES LACK EQUITY Benefits from

IDEO PROJECT Venture Capital & Private Equity LATVIA PROBLEM: COMPANIES LACK EQUITY Benefits from venture capital and private equity to Latvian businesses, government and investors 3 Benefits to Latvian businesses Benefits to

422 views • 26 slides
2018 Science and Engineering Project WIN Meeting 1 1/25-grade 8; 1/26-grade 7 Agenda

2018 Science and Engineering Project WIN Meeting 1 1/25-grade 8; 1/26-grade 7 Agenda

2018 Science and Engineering Project WIN Meeting 1 1/25-grade 8; 1/26-grade 7 Agenda Attendance Meeting Dates Science and Engineering Project Website http://douglasms.ss13.sharpschool.com/staff_directory/

429 views • 22 slides
Searching the Social Network: Future of Internet Search? alessio.signorini@oneriot.com Alessio

Searching the Social Network: Future of Internet Search? alessio.signorini@oneriot.com Alessio

Searching the Social Network: Future of Internet Search? alessio.signorini@oneriot.com Alessio Signorini Who am I? I was born in Pisa, Italy and played professional soccer until a few years ago. No coffee or cigarettes for me. In the past

727 views • 44 slides
Emily Grace Important step in writing a research paper. Rather than gathering books and

Emily Grace Important step in writing a research paper. Rather than gathering books and

Chris Emily Grace Important step in writing a research paper. Rather than gathering books and copying pages upon pages of text. NOTECARDS! Note-taking seems like a tedious effort, but it really does pay off in the end. It is

659 views • 37 slides
Creativity and Innovations in Cross-cultural Context Echange students: Annika Baessler , Germany

Creativity and Innovations in Cross-cultural Context Echange students: Annika Baessler , Germany

Creativity and Innovations in Cross-cultural Context Echange students: Annika Baessler , Germany Marianka Siuhai, Ukraine UL MLBS 4th year: Inese Danovska Gatis Eevrs QUESTIONS TO THE AUDIENCE: What is creativity? What is innovation?

481 views • 32 slides
The Value of Metadata As A Data Management & Project Management Tool Cele Morris

The Value of Metadata As A Data Management & Project Management Tool Cele Morris

The Value of Metadata As A Data Management & Project Management Tool Cele Morris Northwest Indiana Center for Data & Analysis Indiana University Northwest Federal Geographic Data Committee Funded Project Metadata Outreach and

2.14k views • 39 slides
Security Incident Discovery and Correlation on .Gov Networks Cory Mazzola, MSIA, CISSP US-CERT

Security Incident Discovery and Correlation on .Gov Networks Cory Mazzola, MSIA, CISSP US-CERT

Security Incident Discovery and Correlation on .Gov Networks Cory Mazzola, MSIA, CISSP US-CERT Surface Analysis Group Timothy Tragesser US-CERT Fusion Analysis & Development Agenda Overview Data Collection Malware Activity

353 views • 34 slides

More recommend