DNS Tunneling Queries for Binary Classification

Description

This dataset provides labeled domain names divided into two categories: regular domain names ("0" label) and domain names with tunnels ("1" label).

Steps to reproduce

These DNS names are collected through passing a 2MiB file through SSH connection established over DNS tunnel. Regular DNS names where retrieved from OpenDNS respository. The file was created using random generator that uniformly produces letters from English alphabet. The following tools where used to establish DNS tunnels: dns2tcp, dnscapy, iodine, tuns.

Categories

Licence