Software Engineering Institute | Carnegie Mellon University
Software Engineering Institute | Carnegie Mellon University

Digital Library

Javascript is currently disabled for your browser. For an optimal search experience, please enable javascript.

Advanced Search

Basic Search

Content Type

Topics

Publication Date

Presentation

Using Domain Name Registrant Information to Identify Malicious Domains

  • January 2016
  • By Mark Langston
  • In this this FloCon presentation, the author describes how phony addresses may be predictive of future bad behavior from domains not yet known to be malicious.
  • Network Situational Awareness
  • Publisher: CERT Division
  • Abstract

    By mining WHOIS registrant data for physical addresses associated with known-malicious domains, we can identify the popular use of phony registrant addresses. This presentation covers how these phony addresses may be predictive of future bad behavior from domains not yet known to be malicious.
  • Slides

Part of a Collection

FloCon 2016 Presentations