Inventors:
Saumyavapuh Lugani - San Jose CA, US
Snigdhendu Mukhopadhyay - San Jose CA, US
Kuntal Daftary - San Jose CA, US
International Classification:
G06F 21/00
G06F 15/16
Abstract:
A method is disclosed for distributed detection of botnets via a plurality of sensors on a network. According to embodiments, DNS information, including domain names and addresses, is received at a sensor, the number of unique subnets corresponding to a domain name is determined and an alert is sent to other sensors when the number of unique subnets exceeds a first threshold. Other embodiments are also disclosed.