A Novel Botnet Detection System for P2P Networks
Atef Ahmed Obeidat, Majd Mahmoud Al-Kofahi, Mohammad Jazi Bawaneh and Essam Said Hanandeh
DOI : 10.3844/jcssp.2017.329.336
Journal of Computer Science
Volume 13, Issue 8
Botnets remain an active security problem on the Internet and various computer networks. They are continuously developing with regard to protocols, structure and quality of attacks. Many botnet detection programs are currently available, but only few can detect bots in real-time. The sooner bots are detected the lesser damage they can cause. In this paper, a novel botnet detection system, is proposed to detect peer-to-peer bots. The system consists of three-phases filtering, P2P detection and P2P botnet detection phases. For the third phase, P2P network behavior analysis is performed to detect P2P bots. Experimental results showed that the system exhibits high average true positive rate and extremely low average false positive rate during botnet detection.
© 2017 Atef Ahmed Obeidat, Majd Mahmoud Al-Kofahi, Mohammad Jazi Bawaneh and Essam Said Hanandeh. This is an open access article distributed under the terms of the Creative Commons Attribution License, which permits unrestricted use, distribution, and reproduction in any medium, provided the original author and source are credited.