DNS Tunneling Queries for Binary Classification

Published: 12 December 2019| Version 1 | DOI: 10.17632/mzn9hvdcxg.1
Contributor:
Yakov Bubnov

Description

This dataset provides labeled domain names divided into two categories: regular domain names ("0" label) and domain names with tunnels ("1" label).

Files

Steps to reproduce

These DNS names are collected through passing a 2MiB file through SSH connection established over DNS tunnel. Regular DNS names where retrieved from OpenDNS respository. The file was created using random generator that uniformly produces letters from English alphabet. The following tools where used to establish DNS tunnels: dns2tcp, dnscapy, iodine, tuns.

Categories

Networking

Licence