Techniques for identifying potential malware domain names
First Claim
1. A system for identifying potential malware domain names comprising:
- one or more processors communicatively coupled to a network, wherein the one or more processors are configured to;
receive a request for network data, wherein the request for network data comprises a domain name;
apply a lexical and linguistic analysis to the domain name, wherein the lexical and linguistic analysis comprises machine learning configured to establish at least one classifier for performing and fine-tuning potential malware domain name detection; and
identify whether the domain name is a potential malware domain name based on the lexical and linguistic analysis.
2 Assignments
0 Petitions
Accused Products
Abstract
Techniques for identifying potential malware domain names are disclosed. In one particular exemplary embodiment, the techniques may be realized as a system for identifying potential malware domain names. The system may comprise one or more processors communicatively coupled to a network. The one or more processors may be configured to receive a request for network data, where the request for network data may comprise a domain name. The one or more processors may also be configured to apply a lexical and linguistic analysis to the domain name. The one or more processors may also be configured to identify whether the domain name is a potential malware domain name based on the lexical and linguistic analysis.
23 Citations
20 Claims
-
1. A system for identifying potential malware domain names comprising:
one or more processors communicatively coupled to a network, wherein the one or more processors are configured to; receive a request for network data, wherein the request for network data comprises a domain name; apply a lexical and linguistic analysis to the domain name, wherein the lexical and linguistic analysis comprises machine learning configured to establish at least one classifier for performing and fine-tuning potential malware domain name detection; and identify whether the domain name is a potential malware domain name based on the lexical and linguistic analysis. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9)
-
10. A method for identifying potential malware domain names comprising:
-
receiving, at a potential malware domain identification module, a request for network data, wherein the request for network data comprises a domain name; applying a lexical and linguistic analysis to the domain name, wherein the lexical and linguistic analysis comprises machine learning configured to establish at least one classifier for performing and fine-tuning potential malware domain name detection; and identifying whether the domain name is a potential malware domain name based on the lexical and linguistic analysis. - View Dependent Claims (11, 12, 13, 14, 15, 16, 17, 18, 19)
-
-
20. An article of manufacture for identifying potential malware domain names, the article of manufacture comprising:
-
at least one non-transitory processor readable storage medium; and instructions stored on the at least one medium; wherein the instructions are configured to be readable from the at least one medium by at least one processor and thereby cause the at least one processor to operate so as to; receive, at a potential malware domain identification module, a request for network data, wherein the request for network data comprises a domain name; apply a lexical and linguistic analysis to the domain name, wherein the lexical and linguistic analysis comprises machine learning configured to establish at least one classifier for performing and fine-tuning potential malware domain name detection; and identify whether the domain name is a potential malware domain name based on the lexical and linguistic analysis.
-
Specification