English
Related papers

Related papers: Analysis of Attacker Behavior in Compromised Hosts…

200 papers

Network honeypots are often used by information security teams to measure the threat landscape in order to secure their networks. With the advancement of honeypot development, today's medium-interaction honeypots provide a way for security…

Cryptography and Security · Computer Science 2022-06-29 Zain Shamsi , Daniel Zhang , Daehyun Kyoung , Alex Liu

Analysis of an organization's computer network activity is a key component of early detection and mitigation of insider threat, a growing concern for many organizations. Raw system logs are a prototypical example of streaming data that can…

Neural and Evolutionary Computing · Computer Science 2017-12-19 Aaron Tuor , Samuel Kaplan , Brian Hutchinson , Nicole Nichols , Sean Robinson

This study evaluates the application of predictive analytics for real-time cyber-attack detection and response, focusing on how statistical and machine learning methods can improve decision-making in Security Operations Centers (SOCs).…

Cryptography and Security · Computer Science 2025-09-03 Muhammad Danish

Cyber-systems are under near-constant threat from intrusion attempts. Attacks types vary, but each attempt typically has a specific underlying intent, and the perpetrators are typically groups of individuals with similar objectives.…

Cryptography and Security · Computer Science 2025-03-21 Francesco Sanna Passino , Anastasia Mantziou , Daniyar Ghani , Philip Thiede , Ross Bevington , Nicholas A. Heard

Signature-based botnet detection methods identify botnets by recognizing Command and Control (C\&C) traffic and can be ineffective for botnets that use new and sophisticate mechanisms for such communications. To address these limitations,…

Social and Information Networks · Computer Science 2015-03-10 Jing Wang , Ioannis Ch. Paschalidis

In this survey, we first briefly review the current state of cyber attacks, highlighting significant recent changes in how and why such attacks are performed. We then investigate the mechanics of malware command and control (C2)…

Cryptography and Security · Computer Science 2015-06-23 Joseph Gardiner , Marco Cova , Shishir Nagaraja

Bots, in recent times, have posed a major threat to enterprise networks. With the distributed nature of the way in which botnets operate, the problems faced by enterprises have become acute. A bot is a program that operates as an agent for…

Cryptography and Security · Computer Science 2012-07-03 Manoj Rameshchandra Thakur

Webshell attacks are becoming more common, requiring robust detection mechanisms to protect web applications. The dissertation clearly states two research directions: scanning web application source code and analyzing HTTP traffic to detect…

Cryptography and Security · Computer Science 2024-12-10 Ha L. Viet , On V. Phung , Hoa N. Nguyen

Distributed Denial-of-Service (DDoS) attacks are usually launched through the $botnet$, an "army" of compromised nodes hidden in the network. Inferential tools for DDoS mitigation should accordingly enable an early and reliable…

Information Theory · Computer Science 2016-09-12 Vincenzo Matta , Mario Di Mauro , Maurizio Longo

Cyber Threat hunting is a proactive search for known attack behaviors in the organizational information system. It is an important component to mitigate advanced persistent threats (APTs). However, the attack behaviors recorded in…

Cryptography and Security · Computer Science 2021-04-21 Renzheng Wei , Lijun Cai , Aimin Yu , Dan Meng

Botnets are computer networks controlled by malicious actors that present significant cybersecurity challenges. They autonomously infect, propagate, and coordinate to conduct cybercrimes, necessitating robust detection methods. This…

Cryptography and Security · Computer Science 2024-09-04 Rahul Yumlembam , Biju Issac , Seibu Mary Jacob , Longzhi Yang

Offensive security-tests are a common way to pro-actively discover potential vulnerabilities. They are performed by specialists, often called penetration-testers or white-hat hackers. The chronic lack of available white-hat hackers prevents…

Software Engineering · Computer Science 2023-08-24 Andreas Happe , Jürgen Cito

There is a continuous increase in the sophistication that modern malware exercise in order to bypass the deployed security mechanisms. A typical approach to evade the identification and potential takedown of a botnet command and control…

Cryptography and Security · Computer Science 2019-09-17 Constantinos Patsakis , Fran Casino , Vasilios Katos

It is usually assumed that Honeynets are hard to detect and that attempts to detect or disable them can be unconditionally monitored. We scrutinize this assumption and demonstrate a method how a host in a honeynet can be completely…

Cryptography and Security · Computer Science 2016-11-15 Maximillian Dornseif , Thorsten Holz , Christian N. Klein

Machine learning and data mining techniques are utiized for enhancement of the security of any network. Researchers used machine learning for pattern detection, anomaly detection, dynamic policy setting, etc. The methods allow the program…

Cryptography and Security · Computer Science 2024-08-31 Aviral Srivastava , Dhyan Thakkar , Sharda Valiveti , Pooja Shah , Gaurang Raval

We focus on the problem of botnet orchestration and discuss how attackers can leverage decentralised technologies to dynamically control botnets with the goal of having botnets that are resilient against hostile takeovers. We cover critical…

Cryptography and Security · Computer Science 2020-05-05 Dimitri Kamenski , Arash Shaghaghi , Matthew Warren , Salil S. Kanhere

Adversary emulation tools facilitate scripting and automated execution of cyber attack chains, thereby reducing costs and manual expert effort required for security testing, cyber exercises, and intrusion detection research. However, due to…

Cryptography and Security · Computer Science 2026-01-21 Max Landauer , Wolfgang Hotwagner , Thorina Boenke , Florian Skopik , Markus Wurzenberger

Botnet detection based on machine learning have witnessed significant leaps in recent years, with the availability of large and reliable datasets that are extracted from real-life scenarios. Consequently, adversarial attacks on machine…

Cryptography and Security · Computer Science 2023-10-03 Mohammed M. Alani , Atefeh Mashatan , Ali Miri

The proliferation of IoT systems, has seen them targeted by malicious third parties. To address this, realistic protection and investigation countermeasures need to be developed. Such countermeasures include network intrusion detection and…

Cryptography and Security · Computer Science 2018-11-05 Nickolaos Koroniotis , Nour Moustafa , Elena Sitnikova , Benjamin Turnbull

With a growing increase in botnet attacks, computer networks are constantly under threat from attacks that cripple cyber-infrastructure. Detecting these attacks in real-time proves to be a difficult and resource intensive task. One of the…

Cryptography and Security · Computer Science 2018-05-04 David Santana , Shan Suthaharan , Somya Mohanty