Software Engineering Institute | Carnegie Mellon University
Software Engineering Institute | Carnegie Mellon University

Digital Library

Javascript is currently disabled for your browser. For an optimal search experience, please enable javascript.

Advanced Search

Basic Search

Content Type

Topics

Publication Date

Daniel Ruef
December 2017 - Conference Paper Open-source Measurement of Fast-flux Networks While Considering Domain-name Parking

Authors: Leigh B. Metcalf, Daniel Ruef, Jonathan Spring

In this paper, domain parking is the practice of assign- ing a nonsense location to an unused fully-qualified domain name (FQDN) to keep it ready for “live” use.

January 2016 - Presentation Detecting Traffic to Recently Unparked Domains with Analysis Pipeline

Topics: Network Situational Awareness

Authors: Daniel Ruef

In this presentation, the authors discuss using Analysis Pipeline to detect (1) changes in the control plane and (2) data going to recently unparked IP addresses.

January 2015 - Presentation Indicator Expansion with Analysis Pipeline

Topics: Network Situational Awareness

Authors: Daniel Ruef

In this presentation, given at FloCon 2015, Dan Ruef discusses indicator expansion.

January 2011 - Presentation Incorporating Dynamic List Structures into YAF

Topics: Network Situational Awareness

Authors: Dan Ruef, Emily Sarneso

In this presentation, the authors discuss IPFIX limitations and extensions, list structure, and mediators in YAF.

January 2011 - Presentation Analysis Pipeline

Topics: Network Situational Awareness

Authors: Dan Ruef

In this presentation, Dan Ruef discusses moving analysis from retroactive to real time, pipeline capabilities, and streaming analysis coding issues.