论文信息 - Booter websites characterization: towards a list of threats

Booter websites characterization: towards a list of threats

Distributed Denial of Service (DDoS) attacks mean millions in revenue losses to many industries, such e-commerce and online financial services. The amount of reported DDoS attacks has increased with 47% compared to 2013. One of the reasons for this increase is the availability and ease of accessibility to websites, which provide DDoS attacks as a paid service, called Booters. Although there are hundreds of Booters available, current researches are focused on a handful sample of them - either to analyse attack traffic or hacked databases. Towards a thorough understanding and mitigation of Booters, a comprehensive list of them is needed. In this paper we characterize Booter websites and demonstrate that the found main characteristics can be used to classify Booters with 85% of accuracy. The Dutch National Research and Education Network (SURFnet) has been using a list generated by our methodology since 2013, what demonstrates high relevance to the network management community and the security specialists.

Aiko Pras | Anna Sperotto | José Jair Cardoso de Santanna | Justyna Joanna Chromik

[1] Aiko Pras,et al. Inside booters: An analysis on operational databases , 2015, 2015 IFIP/IEEE International Symposium on Integrated Network Management (IM).

[2] Lawrence K. Saul,et al. Beyond blacklists: learning to detect malicious web sites from suspicious URLs , 2009, KDD.

[3] Aiko Pras,et al. Booters — An analysis of DDoS-as-a-service attacks , 2015, 2015 IFIP/IEEE International Symposium on Integrated Network Management (IM).

[4] Heon Young Yeom,et al. Interactive Website Filter for Safe Web Browsing , 2013, J. Inf. Sci. Eng..

[5] Veljko Milutinovic,et al. Visual Adjacency Multigraphs – a Novel Approach for a Web Page Classification , 2004 .

[6] Peter Reiher,et al. A taxonomy of DDoS attack and DDoS defense mechanisms , 2004, CCRV.

[7] Christoph Lindemann,et al. Coarse-grained classification of web sites by their structural properties , 2006, WIDM '06.

[8] Chandrabose Aravindan,et al. Naive Bayes Approach for Website Classification , 2011 .

[9] Liming Chen,et al. WebGuard: a Web filtering engine combining textual, structural, and visual content-based analysis , 2006, IEEE Transactions on Knowledge and Data Engineering.

[10] Lars Littig. Classifying web sites , 2007, WWW '07.

[11] Anna Sperotto,et al. Characterizing and Mitigating the DDoS-as-a-Service Phenomenon , 2014, AIMS.

[12] Damon McCoy,et al. Understanding the Emerging Threat of DDoS-as-a-Service , 2013, LEET.