{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,3,25]],"date-time":"2025-03-25T14:50:14Z","timestamp":1742914214889,"version":"3.40.3"},"publisher-location":"Cham","reference-count":10,"publisher":"Springer International Publishing","isbn-type":[{"type":"print","value":"9783319271781"},{"type":"electronic","value":"9783319271798"}],"license":[{"start":{"date-parts":[[2015,1,1]],"date-time":"2015-01-01T00:00:00Z","timestamp":1420070400000},"content-version":"unspecified","delay-in-days":0,"URL":"http:\/\/www.springer.com\/tdm"}],"content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2015]]},"DOI":"10.1007\/978-3-319-27179-8_14","type":"book-chapter","created":{"date-parts":[[2016,1,14]],"date-time":"2016-01-14T07:09:05Z","timestamp":1452755345000},"page":"201-211","source":"Crossref","is-referenced-by-count":0,"title":["Detecting Computers in Cyber Space Maliciously Exploited as SSH Proxies"],"prefix":"10.1007","author":[{"given":"Idan","family":"Morad","sequence":"first","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Asaf","family":"Shabtai","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"297","published-online":{"date-parts":[[2016,1,15]]},"reference":[{"key":"14_CR1","volume-title":"SSH, The Secure Shell: The Definitive Guide","author":"DJ Barrett","year":"2005","unstructured":"Barrett, D.J., Silverman, R.E., Byrnes, R.G.: SSH, The Secure Shell: The Definitive Guide. O\u2019Reilly Media, Inc., Sebastopol (2005)"},{"key":"14_CR2","unstructured":"Kaspersky Labs, The Roof Is on Fire: Tackling Flame\u2019s C&C Servers (2012). \n                      http:\/\/www.securelist.com\/en\/blog?print_mode=1&weblogid=208193540\/"},{"key":"14_CR3","unstructured":"Kaspersky Labs, The Mystery of Duqu: Part Six (The Command and Control servers) (2011). \n                      http:\/\/www.securelist.com\/en\/blog\/625\/The_Mystery_of_Duqu_Part_Six_The_Command_and_Control_servers"},{"key":"14_CR4","unstructured":"W\u00e4hlisch, M., Vorbach, A., Keil, C., Sch\u00f6nfelder, J., Schmidt, T.C., Schiller, J.H.: Design, Implementation, and Operation of a Mobile Honeypot. arXiv preprint \n                      arXiv:1301.7257\n                      \n                     (2013)"},{"key":"14_CR5","doi-asserted-by":"crossref","unstructured":"Dusi, M., Crotti, M., Gringoli, F., Salgarelli, L.: Detection of encrypted tunnels across network boundaries. In: 2008 IEEE International Conference on Communications, pp. 1738\u20131744. IEEE (2008)","DOI":"10.1109\/ICC.2008.334"},{"key":"14_CR6","doi-asserted-by":"crossref","unstructured":"Alshammari, R., Zincir-Heywood, A.N.: A flow based approach for SSH traffic detection. In: 2007 IEEE International Conference on Systems, Man and Cybernetics, pp. 296\u2013301. IEEE (2007)","DOI":"10.1109\/ICSMC.2007.4414006"},{"key":"14_CR7","doi-asserted-by":"crossref","unstructured":"Dusi, M., Este, A., Gringoli, F., Salgarelli, L.: Using GMM and SVM-based techniques for the classification of SSH-encrypted traffic. In: 2009 IEEE International Conference on Communications, pp. 1\u20136. IEEE (2009)","DOI":"10.1109\/ICC.2009.5199557"},{"key":"14_CR8","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"86","DOI":"10.1007\/978-3-642-30633-4_11","volume-title":"Dependable Networks and Services","author":"L Hellemons","year":"2012","unstructured":"Hellemons, L., Hendriks, L., Hofstede, R., Sperotto, A., Sadre, R., Pras, A.: SSHCure: A flow-based SSH intrusion detection system. In: Sadre, R., Novotn\u00fd, J., \u010celeda, P., Waldburger, M., Stiller, B. (eds.) AIMS 2012. LNCS, vol. 7279, pp. 86\u201397. Springer, Heidelberg (2012)"},{"key":"14_CR9","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"295","DOI":"10.1007\/978-3-642-38067-9_26","volume-title":"Multiple Classifier Systems","author":"L Tenenboim-Chekina","year":"2013","unstructured":"Tenenboim-Chekina, L., Rokach, L., Shapira, B.: Ensemble of feature chains for anomaly detection. In: Zhou, Z.-H., Roli, F., Kittler, J. (eds.) MCS 2013. LNCS, vol. 7872, pp. 295\u2013306. Springer, Heidelberg (2013)"},{"key":"14_CR10","unstructured":"Wireshrk 1.8.6 (2015). \n                      http:\/\/www.wireshark.org\/"}],"container-title":["Lecture Notes in Computer Science","Innovative Security Solutions for Information Technology and Communications"],"original-title":[],"link":[{"URL":"http:\/\/link.springer.com\/content\/pdf\/10.1007\/978-3-319-27179-8_14","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2019,6,1]],"date-time":"2019-06-01T06:23:44Z","timestamp":1559370224000},"score":1,"resource":{"primary":{"URL":"http:\/\/link.springer.com\/10.1007\/978-3-319-27179-8_14"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2015]]},"ISBN":["9783319271781","9783319271798"],"references-count":10,"URL":"https:\/\/doi.org\/10.1007\/978-3-319-27179-8_14","relation":{},"ISSN":["0302-9743","1611-3349"],"issn-type":[{"type":"print","value":"0302-9743"},{"type":"electronic","value":"1611-3349"}],"subject":[],"published":{"date-parts":[[2015]]}}}