Document Type


Publication Date



In the 21st century, cyber-based attackers such as advance persistent threats are leveraging bots in the form of botnets to conduct a plethora of cyber-attacks. While there are several social engineering techniques used to get targets to unknowingly download these bots, it is the command-and-control techniques advance persistent threats use to control their bots that is of critical interest to the author. In this research paper, the author aims to develop a command-and-control microservice application programming interface infrastructure to facilitate botnet command-and-control attack simulations. To achieve this the author will develop a simple bot skeletal framework, utilize the latest in API development frameworks, and simulate 2 types of malicious cyber-attacks. The attacks will be in the form of data exfiltration and data encryption. The author realizes that there needs to be quantitative data aggregation on the performance of the API and malicious bots. The author will be designing and developing a system to achieve this goal as part of their future work.


Thai H. Nguyễn is a student in the BS/MS Cybersecurity program at Sacred Heart University. He is also a Cybersecurity Solutions Engineer (Intern) for T-Mobile US, Inc., tasked with researching, developing, and maintaining cybersecurity use-case detections and automations.



To view the content in your browser, please download Adobe Reader or, alternately,
you may Download the file to your hard drive.

NOTE: The latest versions of Adobe Reader do not support viewing PDF files within Firefox on Mac OS and if you are using a modern (Intel) Mac, there is no official plugin for viewing PDF files within the browser window.