Main Catalog Informatics, Computer Engineering and Control Methods and Systems of Information Protection, Information Security

Detection and prevention of botnets in cybersecurity

Authors: Losev N.S., Glinskaya E.V.
Published in issue: #5(100)/2025
DOI:
Category: Informatics, Computer Engineering and Control \| Chapter: Methods and Systems of Information Protection, Information Security
Keywords: botnet, botmaster, detection, attacker, machine learning, cybersecurity, DDoS attack, malware
Published: 17.10.2025

Botnets are a network of infected computers controlled by intruders, being one of the most serious threats to cybersecurity. Used to send spam, DDoS attacks, data theft, and malware distribution, botnets can cause significant damage to both individual users and organizations. Botnets are managed through botmaster servers or intruders who coordinate their actions. The article discusses key botnet detection methods, including signature-based, behavioral, and machine learning-based approaches. Botmaster search methods such as network traffic analysis and the use of honeypots are also considered. The results of a comparative analysis of the effectiveness of the methods are presented, strategies for their further improvement are proposed, including combined approaches and the introduction of intelligent predictive analysis systems.

References

[1] Oralbaev E.A. Detection of DDoS attacks by botnets in IoT access networks. Current issues of modern science and education. Penza, Science and Education Publ., 2021, pp. 190-200. EDN: PADMSS.

[2] Eskin D.L. Botnet as a threat to information security. Bulletin of Scientific Conferences, 2020, No. 11-5 (63), pp. 69-71. (In Russ.). EDN: RRBWSG.

[3] Tewogbade S.A., Ajasa M. Botnet attack detection in IoT using machine learning models. International Journal of Science and Research Archive, 2024, vol. 12, no. 1, pp. 2221–2229. https://doi.org/10.30574/ijsra.2024.12.1.0936

[4] Yu H. Research on botnet detection technology in network security. Applied and Computational Engineering, 2023, vol. 18, no. 1, pp. 81–87. https://doi.org/10.54254/2755-2721/18/20230967

[5] Molkova L.Y. Methods of countering botnets and searching for botmasters. Scientific, Technical and Economic cooperation of the Asia-Pacific countries in the 21st Century, 2024, vol. 1, pp. 292-294. (In Russ.).

[6] Han S.Ju., Yoon S.Su., Euom I.Ch. The Machine Learning Ensemble for Analyzing Internet of Things Networks: Botnet Detection and Device Identification. CMES — Computer Modeling in Engineering and Sciences, 2024, vol. 141, no. 2, pp. 1495–1518. https://doi.org/10.32604/cmes.2024.053457

[7] Dobot Yu.N. Botnet networks and their traffic. Innovative ideas of young researchers. XV International Scientific and Practical Conference: collection of tr. Ufa, Scientific Publishing Center Bulletin of Science Publ., 2024, pp. 49-56.

[8] Kabov A.A. Classical machine learning methods and neural network models as the basis for solving the problem of bot detection. Current issues of fundamental and applied research. International Scientific and Practical Conference: collection of articles Penza, Science and Education (IP Gulyaev G.Yu.) Publ., 2023, pp. 17-20. (In Russ.). EDN: FJYOQX.

[9] Bhattacharya S., Khanna A., Dubey R. Botnet Detection and Mitigation: A Comprehensive Literature Review. International Journal of Computer Trends and Technology, 2024, vol. 71, no. 1, pp. 77–82. https://doi.org/10.14445/22312803/ijctt-v72i1p113

[10] Bashmakov N.M., Vasiliev V.I., Vulfin A.M. et al. Detection of botnet network attacks based on machine learning and knowledge transfer technologies. Information and Control Systems, 2024, No. 5 (132), pp. 41-56. (In Russ.). https://doi.org/10.31799/1684-8853-2024-5-41-56