{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,7,6]],"date-time":"2025-07-06T04:01:14Z","timestamp":1751774474884,"version":"3.41.0"},"publisher-location":"Cham","reference-count":22,"publisher":"Springer International Publishing","isbn-type":[{"type":"print","value":"9783319944203"},{"type":"electronic","value":"9783319944210"}],"license":[{"start":{"date-parts":[[2018,1,1]],"date-time":"2018-01-01T00:00:00Z","timestamp":1514764800000},"content-version":"unspecified","delay-in-days":0,"URL":"http:\/\/www.springer.com\/tdm"}],"content-domain":{"domain":["link.springer.com"],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2018]]},"DOI":"10.1007\/978-3-319-94421-0_10","type":"book-chapter","created":{"date-parts":[[2018,6,15]],"date-time":"2018-06-15T03:49:36Z","timestamp":1529034576000},"page":"128-139","update-policy":"https:\/\/doi.org\/10.1007\/springer_crossmark_policy","source":"Crossref","is-referenced-by-count":4,"title":["Identifying Drawbacks in Malicious PDF Detectors"],"prefix":"10.1007","author":[{"ORCID":"https:\/\/orcid.org\/0000-0001-6359-8570","authenticated-orcid":false,"given":"Ahmed","family":"Falah","sequence":"first","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0002-4691-8330","authenticated-orcid":false,"given":"Lei","family":"Pan","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0003-3812-9785","authenticated-orcid":false,"given":"Mohamed","family":"Abdelrazek","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0001-6143-6850","authenticated-orcid":false,"given":"Robin","family":"Doss","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"297","published-online":{"date-parts":[[2018,6,16]]},"reference":[{"key":"10_CR1","unstructured":"Adobe: Adobe reader security patches (2017). https:\/\/helpx.adobe.com\/security\/products\/reader.html"},{"key":"10_CR2","unstructured":"Adobe: PDF technology center (2017). http:\/\/www.adobe.com\/devnet\/pdf.html"},{"key":"10_CR3","doi-asserted-by":"crossref","unstructured":"Carmony, C., Hu, X., Yin, H., Bhaskar, A.V., Zhang, M.: Extract me if you can: abusing PDF parsers in malware detectors, In: NDSS (2016)","DOI":"10.14722\/ndss.2016.23483"},{"key":"10_CR4","unstructured":"Contagio: Contagio malware dump (2017). http:\/\/contagiodump.blogspot.com.au"},{"key":"10_CR5","unstructured":"CVE: PDF-related vulnerabilities (2017). https:\/\/cve.mitre.org\/cgi-bin\/cvekey.cgi?keyword=PDF"},{"key":"10_CR6","unstructured":"Esparza, J.M.: PDF attack - a journey from the exploit kit to the shellcode (2014). https:\/\/www.blackhat.com\/docs\/eu-14\/materials\/eu-14-Esparza-PDF-Attack-A-Journey-From-The-Exploit-Kit-To-The-Shellcode.pdf"},{"key":"10_CR7","doi-asserted-by":"crossref","unstructured":"Laskov, P., \u0160rndi\u0107, N.: Static detection of malicious JavaScript-bearing PDF documents. In: Proceedings of the 27th Annual Computer Security Applications Conference, pp. 373\u2013382. ACM (2011)","DOI":"10.1145\/2076732.2076785"},{"key":"10_CR8","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"231","DOI":"10.1007\/978-3-540-73614-1_14","volume-title":"Detection of Intrusions and Malware, and Vulnerability Assessment","author":"W-J Li","year":"2007","unstructured":"Li, W.-J., Stolfo, S., Stavrou, A., Androulaki, E., Keromytis, A.D.: A study of malcode-bearing documents. In: M. H\u00e4mmerli, B., Sommer, R. (eds.) DIMVA 2007. LNCS, vol. 4579, pp. 231\u2013250. Springer, Heidelberg (2007). https:\/\/doi.org\/10.1007\/978-3-540-73614-1_14"},{"key":"10_CR9","doi-asserted-by":"crossref","unstructured":"Liu, D., Wang, H., Stavrou, A.: Detecting malicious JavaScript in PDF through document instrumentation. In: 2014 44th Annual IEEE\/IFIP International Conference on Dependable Systems and Networks (DSN), pp. 100\u2013111. IEEE (2014)","DOI":"10.1109\/DSN.2014.92"},{"key":"10_CR10","doi-asserted-by":"crossref","unstructured":"Maiorca, D., Ariu, D., Corona, I., Giacinto, G.: A structural and content-based approach for a precise and robust detection of malicious PDF files. In: 2015 International Conference on Information Systems Security and Privacy (ICISSP), pp. 27\u201336. IEEE (2015)","DOI":"10.5220\/0005264400270036"},{"key":"10_CR11","series-title":"Lecture Notes in Computer Science (Lecture Notes in Artificial Intelligence)","doi-asserted-by":"publisher","first-page":"510","DOI":"10.1007\/978-3-642-31537-4_40","volume-title":"Machine Learning and Data Mining in Pattern Recognition","author":"D Maiorca","year":"2012","unstructured":"Maiorca, D., Giacinto, G., Corona, I.: A pattern recognition system for malicious PDF files detection. In: Perner, P. (ed.) MLDM 2012. LNCS (LNAI), vol. 7376, pp. 510\u2013524. Springer, Heidelberg (2012). https:\/\/doi.org\/10.1007\/978-3-642-31537-4_40"},{"key":"10_CR12","unstructured":"McAfee: Mcafee september 2017 threat report (2017). https:\/\/www.mcafee.com\/au\/resources\/reports\/rp-quarterly-threats-sept-2017.pdf"},{"key":"10_CR13","unstructured":"Trent Nelson: PDF collection (2017). https:\/\/github.com\/tpn\/pdfs"},{"issue":"9","key":"10_CR14","doi-asserted-by":"publisher","first-page":"1970","DOI":"10.1109\/TIFS.2016.2566265","volume":"11","author":"A Neupane","year":"2016","unstructured":"Neupane, A., Saxena, N., Maximo, J.O., Kana, R.: Neural markers of cybersecurity: an fMRI study of phishing and malware warnings. IEEE Trans. Inf. Forensics Secur. 11(9), 1970\u20131983 (2016). https:\/\/doi.org\/10.1109\/TIFS.2016.2566265","journal-title":"IEEE Trans. Inf. Forensics Secur."},{"key":"10_CR15","unstructured":"NIST: National vulnerable database (2017). https:\/\/nvd.nist.gov"},{"key":"10_CR16","doi-asserted-by":"crossref","unstructured":"Smutz, C., Stavrou, A.: Malicious PDF detection using metadata and structural features. In: Proceedings Of The 28th Annual Computer Security Applications Conference, pp. 239\u2013248. ACM (2012)","DOI":"10.1145\/2420950.2420987"},{"key":"10_CR17","doi-asserted-by":"crossref","unstructured":"Smutz, C., Stavrou, A.: When a tree falls: using diversity in ensemble classifiers to identify evasion in malware detectors. In: NDSS (2016)","DOI":"10.14722\/ndss.2016.23078"},{"key":"10_CR18","unstructured":"\u0160rndi\u0107, N., Laskov, P.: Detection of malicious PDF files based on hierarchical document structure. In: Proceedings of the 20th Annual Network and Distributed System Security Symposium (2013)"},{"issue":"1","key":"10_CR19","doi-asserted-by":"publisher","first-page":"22","DOI":"10.1186\/s13635-016-0045-0","volume":"2016","author":"N \u0160rndi\u0107","year":"2016","unstructured":"\u0160rndi\u0107, N., Laskov, P.: Hidost: a static machine-learning-based detector of malicious files. EURASIP J. Inf. Secur. 2016(1), 22 (2016)","journal-title":"EURASIP J. Inf. Secur."},{"key":"10_CR20","doi-asserted-by":"crossref","unstructured":"Tabish, S.M., Shafiq, M.Z., Farooq, M.: Malware detection using statistical analysis of byte-level file content. In: Proceedings of the ACM SIGKDD Workshop on CyberSecurity and Intelligence Informatics, pp. 23\u201331. ACM (2009)","DOI":"10.1145\/1599272.1599278"},{"key":"10_CR21","unstructured":"VirusTotal: Virustotal (2017). https:\/\/www.virustotal.com"},{"key":"10_CR22","unstructured":"Xu, M., Kim, T.: PlatPal: detecting malicious documents with platform diversity. In: USENIX Security Symposium (2017)"}],"container-title":["Communications in Computer and Information Science","Future Network Systems and Security"],"original-title":[],"link":[{"URL":"http:\/\/link.springer.com\/content\/pdf\/10.1007\/978-3-319-94421-0_10","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,7,5]],"date-time":"2025-07-05T04:06:45Z","timestamp":1751688405000},"score":1,"resource":{"primary":{"URL":"http:\/\/link.springer.com\/10.1007\/978-3-319-94421-0_10"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2018]]},"ISBN":["9783319944203","9783319944210"],"references-count":22,"URL":"https:\/\/doi.org\/10.1007\/978-3-319-94421-0_10","relation":{},"ISSN":["1865-0929","1865-0937"],"issn-type":[{"type":"print","value":"1865-0929"},{"type":"electronic","value":"1865-0937"}],"subject":[],"published":{"date-parts":[[2018]]}}}