{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,4,15]],"date-time":"2026-04-15T20:51:41Z","timestamp":1776286301418,"version":"3.50.1"},"publisher-location":"Cham","reference-count":20,"publisher":"Springer International Publishing","isbn-type":[{"value":"9783319175324","type":"print"},{"value":"9783319175331","type":"electronic"}],"license":[{"start":{"date-parts":[[2015,1,1]],"date-time":"2015-01-01T00:00:00Z","timestamp":1420070400000},"content-version":"tdm","delay-in-days":0,"URL":"https:\/\/www.springernature.com\/gp\/researchers\/text-and-data-mining"},{"start":{"date-parts":[[2015,1,1]],"date-time":"2015-01-01T00:00:00Z","timestamp":1420070400000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/www.springernature.com\/gp\/researchers\/text-and-data-mining"}],"content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2015]]},"DOI":"10.1007\/978-3-319-17533-1_9","type":"book-chapter","created":{"date-parts":[[2015,4,8]],"date-time":"2015-04-08T12:50:20Z","timestamp":1428497420000},"page":"121-135","source":"Crossref","is-referenced-by-count":22,"title":["On the Effectiveness of Different Botnet Detection Approaches"],"prefix":"10.1007","author":[{"given":"Fariba","family":"Haddadi","sequence":"first","affiliation":[]},{"given":"Duc","family":"Le Cong","sequence":"additional","affiliation":[]},{"given":"Laura","family":"Porter","sequence":"additional","affiliation":[]},{"given":"A. Nur","family":"Zincir-Heywood","sequence":"additional","affiliation":[]}],"member":"297","reference":[{"key":"9_CR1","unstructured":"https:\/\/www.snort.org\/"},{"key":"9_CR2","unstructured":"https:\/\/labs.snort.org\/papers\/zeus.html"},{"key":"9_CR3","unstructured":"NETRESEC repository: publicly available pcap files, \n                        http:\/\/www.netresec.com\/?page=PcapFiles\n                      ."},{"key":"9_CR4","unstructured":"Tranalyzer, \n                        http:\/\/tranalyzer.com\/"},{"key":"9_CR5","unstructured":"Alpaydin, E.: Introduction to Machine Learning. MIT Press (2004)"},{"key":"9_CR6","doi-asserted-by":"crossref","unstructured":"Binsalleeh, H., Ormerod, T., Boukhtouta, A., Sinha, P., Youssef, A., Debbabi, M., Wang, L.: On the analysis of the zeus botnet crimeware toolkit. In: PST (2010)","DOI":"10.1109\/PST.2010.5593240"},{"key":"9_CR7","unstructured":"Celik, Z.B., Raghuram, J., Kesidis, G., Miller, D.J.: Salting public traces with attack traffic to test flow classifiers. In: CSET (2011)"},{"key":"9_CR8","unstructured":"Gu, G., Porras, P., Yegneswaran, V., Fong, M., Lee, W.: Bothunter: detecting malware infection through ids-driven dialog correlation. In: 16th USENIX Security Symposium (2007)"},{"key":"9_CR9","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"529","DOI":"10.1007\/978-3-642-37192-9_53","volume-title":"Applications of Evolutionary Computation","author":"F. Haddadi","year":"2013","unstructured":"Haddadi, F., Kayacik, H.G., Zincir-Heywood, A.N., Heywood, M.I.: Malicious automatically generated domain name detection using stateful-SBB. In: Esparcia-Alc\u00e1zar, A.I. (ed.) EvoApplications 2013. LNCS, vol.\u00a07835, pp. 529\u2013539. Springer, Heidelberg (2013)"},{"key":"9_CR10","unstructured":"Haddadi, F., Zincir-Heywood, A.N.: Benchmarking the effect of flow exporters and protocol filters on botnet traffic classification. IEEE Systems Journal, 1\u201312 (2014)"},{"key":"9_CR11","doi-asserted-by":"crossref","unstructured":"Mohaisen, A., Alrawi, O.: Unveiling Zeus. In: IW3C2 (2013)","DOI":"10.1145\/2487788.2488056"},{"key":"9_CR12","doi-asserted-by":"crossref","unstructured":"Perdisci, R., Corona, I., Dagon, D., Lee, W.: Detecting malicious flux service networks through passive analysis of recursive DNS traces. In: ACSAC (2009)","DOI":"10.1109\/ACSAC.2009.36"},{"key":"9_CR13","unstructured":"RFC 2722 (October 1999), \n                        http:\/\/tools.ietf.org\/html\/rfc2722"},{"key":"9_CR14","doi-asserted-by":"crossref","unstructured":"Saad, S., Traore, I., Ghorbani, A., Sayed, B., Zhao, D., Lu, W., Fleix, J., Hakimian, P.: Detecting P2P botnets through network behavior analysis and machine learning. In: PST (2011)","DOI":"10.1109\/PST.2011.5971980"},{"key":"9_CR15","unstructured":"The CAIDA USCD Network Telescope- \u2019Three Days of Conficker\u2019, \n                        http:\/\/www.caida.org\/data\/passive\/telescope-3days-conficker_dataset.xml"},{"key":"9_CR16","doi-asserted-by":"publisher","first-page":"3275","DOI":"10.1016\/j.comnet.2011.05.026","volume":"55","author":"K. Wang","year":"2011","unstructured":"Wang, K., Huang, C., Lin, S., Lin, Y.: A fuzzy pattern-based filtering algorithm for botnet detection. Computer Networks\u00a055, 3275\u20133286 (2011)","journal-title":"Computer Networks"},{"key":"9_CR17","unstructured":"weka, \n                        http:\/\/www.cs.waikato.ac.nz\/ml\/weka\/"},{"key":"9_CR18","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"232","DOI":"10.1007\/978-3-642-04444-1_15","volume-title":"Computer Security \u2013 ESORICS 2009","author":"P. Wurzinger","year":"2009","unstructured":"Wurzinger, P., Bilge, L., Holz, T., Goebel, J., Kruegel, C., Kirda, E.: Automatically generating models for botnet detection. In: Backes, M., Ning, P. (eds.) ESORICS 2009. LNCS, vol.\u00a05789, pp. 232\u2013249. Springer, Heidelberg (2009)"},{"key":"9_CR19","doi-asserted-by":"crossref","unstructured":"Zhang, J., Chen, C., Xiang, Y., Zhou, W., Vasilakos, A.: An effective network classification method with unknown flow detection. IEEE Transactions on Network and Service Management\u00a010 (2013)","DOI":"10.1109\/TNSM.2013.022713.120250"},{"key":"9_CR20","doi-asserted-by":"crossref","unstructured":"Zhao, D., Traore, I., Sayed, B., Lu, W., Saad, S., Ghorbani, A., Garant, D.: Botnet detection based on traffic behavior analysis and flow intervals. Computers and Security\u00a039 (2013)","DOI":"10.1016\/j.cose.2013.04.007"}],"container-title":["Lecture Notes in Computer Science","Information Security Practice and Experience"],"original-title":[],"language":"en","link":[{"URL":"https:\/\/link.springer.com\/content\/pdf\/10.1007\/978-3-319-17533-1_9","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2023,2,1]],"date-time":"2023-02-01T14:47:45Z","timestamp":1675262865000},"score":1,"resource":{"primary":{"URL":"https:\/\/link.springer.com\/10.1007\/978-3-319-17533-1_9"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2015]]},"ISBN":["9783319175324","9783319175331"],"references-count":20,"URL":"https:\/\/doi.org\/10.1007\/978-3-319-17533-1_9","relation":{},"ISSN":["0302-9743","1611-3349"],"issn-type":[{"value":"0302-9743","type":"print"},{"value":"1611-3349","type":"electronic"}],"subject":[],"published":{"date-parts":[[2015]]}}}