Network defenses based on traditional tools, techniques, and procedures (TTP) fail to
account for the attacker's inherent advantage present due to the static nature of network …

A Survey on Honeypot Software and Data Analysis Page 1 A Survey on Honeypot Software and
Data Analysis Marcin Nawrocki ∗ , Matthias Wählisch ∗ , Thomas C. Schmidt † , Christian Keil ‡ …

Security logs are widely used to monitor data, networks, and computer activities. By
analyzing them, security experts can pick out anomalies that reveal the presence of cyber …

Flow-based intrusion detection has recently become a promising security mechanism in
high speed networks (1-10 Gbps). Despite the richness in contributions in this field …

The freedom and transparency of information flow on the Internet has heightened concerns
of privacy. Given a set of data items, clustering algorithms group similar items together …

It is important to understand to what extent, and in what perspectives, cyber attacks can be
predicted. Despite its evident importance, this problem was not investigated until very …

Identifying new intrusions and developing effective signatures that detect them is essential
for protecting computer networks. We present Nemean, a system for automatic generation of …

A well-rounded, accessible exposition of honeypots in wired and wireless networks, this
book addresses the topic from a variety of perspectives. Following a strong theoretical …

This practical experience report presents the results of an experiment aimed at building a
profile of attacker behavior following a remote compromise. For this experiment, we utilized …

Collecting data related to Internet threats has now become a relatively common task for
security researchers and network operators. However, the huge amount of raw data can …