{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,12,18]],"date-time":"2025-12-18T14:13:13Z","timestamp":1766067193798,"version":"3.40.3"},"publisher-location":"Cham","reference-count":27,"publisher":"Springer International Publishing","isbn-type":[{"type":"print","value":"9783030471309"},{"type":"electronic","value":"9783030471316"}],"license":[{"start":{"date-parts":[[2020,1,1]],"date-time":"2020-01-01T00:00:00Z","timestamp":1577836800000},"content-version":"tdm","delay-in-days":0,"URL":"http:\/\/www.springer.com\/tdm"},{"start":{"date-parts":[[2020,1,1]],"date-time":"2020-01-01T00:00:00Z","timestamp":1577836800000},"content-version":"vor","delay-in-days":0,"URL":"http:\/\/www.springer.com\/tdm"}],"content-domain":{"domain":["link.springer.com"],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2020]]},"DOI":"10.1007\/978-3-030-47131-6_2","type":"book-chapter","created":{"date-parts":[[2020,7,25]],"date-time":"2020-07-25T08:03:54Z","timestamp":1595664234000},"page":"5-29","update-policy":"https:\/\/doi.org\/10.1007\/springer_crossmark_policy","source":"Crossref","is-referenced-by-count":5,"title":["Defending IoT Devices from Malware"],"prefix":"10.1007","author":[{"given":"William","family":"O\u2019Sullivan","sequence":"first","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Kim-Kwang Raymond","family":"Choo","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Nhien-An","family":"Le-Khac","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"297","published-online":{"date-parts":[[2020,7,26]]},"reference":[{"key":"2_CR1","unstructured":"Krebs on Security: Cowards Attack Sony PlayStation, Microsoft xBox Networks. \nhttp:\/\/krebsonsecurity.com\/2014\/12\/cowards-attack-sony-playstation-microsoft-xbox-networks\/\n\n (2014). Accessed 27 June 2019"},{"key":"2_CR2","unstructured":"HackRead: The Mirai botnet: what it is, what it has done, and how to find out if you\u2019re part of it. \nhttps:\/\/www.hackread.com\/mirai-botnet-ddos-attacks-brief\/\n\n (2016). Accessed 27 June 2019"},{"key":"2_CR3","unstructured":"MalwareTech: Mapping Mirai: a botnet case study. \nhttps:\/\/www.malwaretech.com\/2016\/10\/mapping-mirai-a-botnet-case-study.html\n\n (2016). Accessed 27 June 2019"},{"key":"2_CR4","unstructured":"YouTube: Jihadi x tutorials. \nhttps:\/\/www.youtube.com\/channel\/UCXM4xUOmJk3Px2qiG9x1ygg\n\n (2017). Accessed 27 June 2019"},{"key":"2_CR5","doi-asserted-by":"publisher","unstructured":"Goudbeek, A., Choo, K.-K.R., Le-Khac, N.-A.: A forensic investigation framework for smart home environment. In: 17th IEEE International Conference on Trust, Security and Privacy in Computing and Communications (IEEE TrustCom-18), New York, Aug 2018. \nhttps:\/\/doi.org\/10.1109\/TrustCom\/BigDataSE.2018.00201","DOI":"10.1109\/TrustCom\/BigDataSE.2018.00201"},{"key":"2_CR6","doi-asserted-by":"publisher","unstructured":"Alabdulsalam, S., Schaefer, K., Kechadi, M.-T., Le-Khac, N.-A.: Internet of things forensics: challenges and case study. In: Gilbert, P., Sujeet, S. (eds.) Advances in Digital Forensics XIV. Springer Berlin Heidelberg, New York (2018). \nhttps:\/\/doi.org\/10.1007\/978-3-319-99277-8_3","DOI":"10.1007\/978-3-319-99277-8_3"},{"key":"2_CR7","doi-asserted-by":"crossref","unstructured":"Jerkins, J.A.: Motivating a market or regulatory solution to IoT insecurity with the Mirai botnet code. In: 2017 IEEE 7th Annual Computing and Communication Workshop and Conference (CCWC), Las Vegas, 9\u201311 Jan 2017","DOI":"10.1109\/CCWC.2017.7868464"},{"key":"2_CR8","unstructured":"Stress Testing the Booters: Understanding and Undermining the Business of DDoS Services. \nhttp:\/\/damonmccoy.com\/papers\/www2016-booter.pdf\n\n (2015). Accessed 27 June 2019"},{"key":"2_CR9","unstructured":"Botnet Detection: Honeypots and the Internet of Things. \nhttps:\/\/msmis.eller.arizona.edu\/sites\/msmis\/files\/documents\/sfs_papers\/ryan_chinn_sfs_masters_paper_0.pdf\n\n (2015). Accessed 27 June 2019"},{"key":"2_CR10","unstructured":"CVE: CVE-2014-9222. \nhttps:\/\/cve.mitre.org\/cgi-bin\/cvename.cgi?name=CVE-2014-9222\n\n (2014). Accessed 27 June 2019"},{"key":"2_CR11","doi-asserted-by":"publisher","unstructured":"Linke, A., Le-Khac, N.-A.: Control flow change in assembly as a classifier in malware analysis. In: 4th IEEE International Symposium on Digital Forensics and Security, Arkansas, Apr 2016. \nhttps:\/\/doi.org\/10.1109\/ISDFS.2016.7473514","DOI":"10.1109\/ISDFS.2016.7473514"},{"key":"2_CR12","unstructured":"Github: Mirai Source Code. \nhttps:\/\/github.com\/jgamblin\/Mirai-Source-Code\n\n (2016). Accessed 27 June 2019"},{"key":"2_CR13","unstructured":"Malware Must Die: MMD-0056-2016\u2014Linux\/Mirai, how an old ELF malcode is recycled. \nhttp:\/\/blog.malwaremustdie.org\/2016\/08\/mmd-0056-2016-linuxmirai-just.html\n\n (2016). Accessed 27 June 2019"},{"key":"2_CR14","unstructured":"Splunk: Analyzing the Mirai Botnet with Splunk. \nhttps:\/\/www.splunk.com\/blog\/2016\/10\/07\/analyzing-the-mirai-botnet-with-splunk\/\n\n (2016). Accessed 27 June 2019"},{"issue":"5","key":"2_CR15","doi-asserted-by":"publisher","first-page":"287","DOI":"10.4304\/jnw.10.5.287-293","volume":"10","author":"A Bijalwan","year":"2015","unstructured":"Bijalwan, A., Wazid, M., Pilli, E.S., Joshi, R.C.: Forensics of random-UDP flooding attacks. J. Netw. 10(5), 287 (2015). \nhttps:\/\/doi.org\/10.4304\/jnw.10.5.287-293","journal-title":"J. Netw."},{"key":"2_CR16","unstructured":"Hot Hardware: Mirai IoT DDoS Botnet Source Code Reveals Specific Targeting of Valve Source Engine Games on Steam. \nhttps:\/\/hothardware.com\/news\/mirai-iot-ddos-botnet-source-code-targets-valve-source-engine#WvZOQVKi252ACL1t.99\n\n (2016). Accessed 27 June 2019"},{"key":"2_CR17","unstructured":"Secure64: Water Torture: A Slow Drip DNS DDoS Attack. \nhttps:\/\/secure64.com\/water-torture-slow-drip-dns-ddos-attack\/\n\n (2014). Accessed 27 June 2017"},{"key":"2_CR18","doi-asserted-by":"publisher","first-page":"1","DOI":"10.5815\/ijcnis.2013.08.01","volume":"8","author":"M Bogdanoski","year":"2013","unstructured":"Bogdanoski, M., Shuminoski, T., Risteski, A.: Analysis of the SYN flood DoS attack. J. Comput. Netw. Inf. Secur. 8, 1\u201311 (2013). \nhttps:\/\/doi.org\/10.5815\/ijcnis.2013.08.01","journal-title":"J. Comput. Netw. Inf. Secur."},{"key":"2_CR19","unstructured":"DDOS-GAURD, ACK & Push ACK Flood: \nhttps:\/\/ddos-guard.net\/en\/terminology\/ack-push-ack-flood\n\n. Accessed 27 June 2019"},{"key":"2_CR20","unstructured":"Security Week: What\u2019s the Fix for IoT DDoS Attacks? \nhttp:\/\/www.securityweek.com\/whats-fix-iot-ddos-attacks\n\n (2016). Accessed 27 June 2019"},{"key":"2_CR21","unstructured":"F5 Labs: Mirai: The IoT Bot That Took Down Krebs and Launched a TBPS Attack on OVH. \nhttps:\/\/f5.com\/labs\/articles\/threat-intelligence\/ddos\/mirai-the-iot-bot-that-took-down-krebs-and-launched-a-tbps-attack-on-ovh-22422\n\n (2016). Accessed 27 June 2019"},{"key":"2_CR22","unstructured":"Github: Qbot Source Code. \nhttps:\/\/github.com\/gh0std4ncer\/lizkebab\/blob\/master\/server.c\n\n (2015). Accessed 27 June 2019"},{"key":"2_CR23","unstructured":"Eduard, K.: BASHLITE Botnets Ensnare 1 Million IoT Devices. Security Week, 31 Aug 2016. \nhttp:\/\/www.securityweek.com\/bashlite-botnets-ensnare-1-million-iot-devices\n\n (2016). Accessed 27 June 2019"},{"key":"2_CR24","unstructured":"Malware Must Die: MMD-0052-2016\u2014Overview of \u201cSkidDDoS\u201d ELF++ IRC Botnet. \nhttp:\/\/blog.malwaremustdie.org\/2016\/02\/mmd-0052-2016-skidddos-elf-distribution.html#gayfgt\n\n (2016). Accessed 27 June 2019"},{"key":"2_CR25","unstructured":"Krebs on Security: Lizard Stresser Runs on Hacked Home Routers. \nhttps:\/\/krebsonsecurity.com\/2015\/01\/lizard-stresser-runs-on-hacked-home-routers\/#more-29431\n\n (2015). Accessed 27 June 2019"},{"key":"2_CR26","doi-asserted-by":"publisher","unstructured":"Le-Khac, N.-A., Jacobs, D., Nijhoff, J., Bertens, K., Choo, K.-K.R.: Smart Vehicle Forensics: Challenges and Case Study. Future Gener. Comput. Syst. (2018). \nhttps:\/\/doi.org\/10.1016\/j.future.2018.05.081","DOI":"10.1016\/j.future.2018.05.081"},{"key":"2_CR27","unstructured":"Efa: Raspberry Pi Image: Changes Made to Original Diagram Include the Addition of a Flow Chart and a Switch with LCD Screen. \nhttps:\/\/en.wikipedia.org\/wiki\/File:RaspberryPi_3B.svg\n\n, \nhttps:\/\/creativecommons.org\/licenses\/by\/3.0\/\n\n (2016). Accessed 24 April 2020"}],"container-title":["Studies in Big Data","Cyber and Digital Forensic Investigations"],"original-title":[],"language":"en","link":[{"URL":"http:\/\/link.springer.com\/content\/pdf\/10.1007\/978-3-030-47131-6_2","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2020,7,25]],"date-time":"2020-07-25T08:14:39Z","timestamp":1595664879000},"score":1,"resource":{"primary":{"URL":"http:\/\/link.springer.com\/10.1007\/978-3-030-47131-6_2"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2020]]},"ISBN":["9783030471309","9783030471316"],"references-count":27,"URL":"https:\/\/doi.org\/10.1007\/978-3-030-47131-6_2","relation":{},"ISSN":["2197-6503","2197-6511"],"issn-type":[{"type":"print","value":"2197-6503"},{"type":"electronic","value":"2197-6511"}],"subject":[],"published":{"date-parts":[[2020]]},"assertion":[{"value":"26 July 2020","order":1,"name":"first_online","label":"First Online","group":{"name":"ChapterHistory","label":"Chapter History"}}]}}