A Method Based on Statistical Characteristics for Detection Malware Requests in Network Traffic

Network traffic inspection is an important method to discover the existence of malware when it bypasses security devices through polymorphic techniques or zero-day attacks. However, traditional network signature-based or IoC (Indicator of Compromise) detection could fail since the encryption and variability of threats has been increasing....More