Software Engineering Institute | Carnegie Mellon University
Software Engineering Institute | Carnegie Mellon University

Digital Library

Javascript is currently disabled for your browser. For an optimal search experience, please enable javascript.

Advanced Search

Basic Search

Content Type


Publication Date


Detecting Malicious IPs and Domain Names by Fusing Threat Feeds and Passive DNS through Graph Inference

  • Abstract

    Network security analysts routinely collect large volumes of network and application log data, but the analysis of this data is largely unsophisticated. Threat Feeds inundate analysts with tips on malicious IPs and domain names. In this presentation, we give security analysts a tool to connect the dots and uncover more malicious activity on their network faster and more accurately.

  • Download

Part of a Collection

FloCon 2018 Presentations