University of Twente Student Theses

Login

Combating snowshoe spam with fire

Toorn, Olivier I. van der (2017) Combating snowshoe spam with fire.

[img] PDF
Restricted to Restricted

5MB
Abstract:Snowshoe spam is an emerging type of spam which is notoriously hard to detect, as the spammers spread out the sending load over many hosts. More and more spammers make use of techniques like Sender Policy Framework (SPF) to appear more genuine, however, in order to configure SPF correctly a domain name is needed. As result snowshoe spam domains usually contain many records, this makes these kind of domains stand out. In this paper we take a active approach towards detection of snowshoe spam domains using active Domain Name System (DNS) measurements and machine learning. For a few months we have made daily detections where, on average, every day around 240 new domains were detected. We show, by comparing our results with a number of blacklists and a case- study, that our method is able to detect snowshoe domains and can be used to mark emails as spam before the domains appearing in the emails appear on blacklists.
Item Type:Essay (Master)
Faculty:EEMCS: Electrical Engineering, Mathematics and Computer Science
Subject:02 science and culture in general
Programme:Electrical Engineering MSc (60353)
Link to this item:http://purl.utwente.nl/essays/73335
Export this item as:BibTeX
EndNote
HTML Citation
Reference Manager

 

Repository Staff Only: item control page