{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2024,9,11]],"date-time":"2024-09-11T06:47:00Z","timestamp":1726037220556},"publisher-location":"Singapore","reference-count":10,"publisher":"Springer Singapore","isbn-type":[{"type":"print","value":"9789811391897"},{"type":"electronic","value":"9789811391903"}],"license":[{"start":{"date-parts":[[2019,1,1]],"date-time":"2019-01-01T00:00:00Z","timestamp":1546300800000},"content-version":"tdm","delay-in-days":0,"URL":"http:\/\/www.springer.com\/tdm"}],"content-domain":{"domain":["link.springer.com"],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2019]]},"DOI":"10.1007\/978-981-13-9190-3_68","type":"book-chapter","created":{"date-parts":[[2019,7,10]],"date-time":"2019-07-10T13:02:55Z","timestamp":1562763775000},"page":"618-624","update-policy":"http:\/\/dx.doi.org\/10.1007\/springer_crossmark_policy","source":"Crossref","is-referenced-by-count":0,"title":["Uncovering Internal Threats Based on Open-Source Intelligence"],"prefix":"10.1007","author":[{"given":"Meng-Han","family":"Tsai","sequence":"first","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Ming-Hung","family":"Wang","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Wei-Chieh","family":"Yang","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Chin-Laung","family":"Lei","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"297","published-online":{"date-parts":[[2019,7,11]]},"reference":[{"issue":"4","key":"68_CR1","doi-asserted-by":"publisher","first-page":"14:1","DOI":"10.1145\/2584679","volume":"16","author":"L Bilge","year":"2014","unstructured":"Bilge, L., Sen, S., Balzarotti, D., Kirda, E., Kruegel, C.: Exposure: a passive DNS analysis service to detect and report malicious domains. ACM Trans. Inf. Syst. Secur. (TISSEC) 16(4), 14:1\u201314:28 (2014)","journal-title":"ACM Trans. Inf. Syst. Secur. (TISSEC)"},{"key":"68_CR2","unstructured":"Binde, B., McRee, R., O\u2019Connor, T.J.: Assessing outbound traffic to uncover advanced persistent threat. SANS Institute Whitepaper, p. 16 (2011)"},{"key":"68_CR3","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"1","DOI":"10.1007\/978-3-319-11379-1_1","volume-title":"Research in Attacks, Intrusions and Defenses","author":"M K\u00fchrer","year":"2014","unstructured":"K\u00fchrer, M., Rossow, C., Holz, T.: Paint it black: evaluating the effectiveness of malware blacklists. In: Stavrou, A., Bos, H., Portokalidis, G. (eds.) RAID 2014. LNCS, vol. 8688, pp. 1\u201321. Springer, Cham (2014). \n                    https:\/\/doi.org\/10.1007\/978-3-319-11379-1_1"},{"issue":"11","key":"68_CR4","doi-asserted-by":"publisher","first-page":"1906","DOI":"10.1109\/TIFS.2014.2357251","volume":"9","author":"X Ma","year":"2014","unstructured":"Ma, X., Zhang, J., Tao, J., Li, J., Tian, J., Guan, X.: DNSRadar: outsourcing malicious domain detection based on distributed cache-footprints. IEEE Trans. Inf. Forensics Secur. 9(11), 1906\u20131921 (2014)","journal-title":"IEEE Trans. Inf. Forensics Secur."},{"issue":"5","key":"68_CR5","first-page":"714","volume":"9","author":"R Perdisci","year":"2012","unstructured":"Perdisci, R., Corona, I., Giacinto, G.: Early detection of malicious flux networks via large-scale passive dns traffic analysis. IEEE Trans. Dependable Secure Comput. 9(5), 714\u2013726 (2012)","journal-title":"IEEE Trans. Dependable Secure Comput."},{"key":"68_CR6","doi-asserted-by":"crossref","unstructured":"Rahbarinia, B., Perdisci, R., Antonakakis, M.: Segugio: efficient behavior-based tracking of malware-control domains in large ISP networks. In: The 45th Annual IEEE\/IFIP International Conference on Dependable Systems and Networks (DSN), pp. 403\u2013414. IEEE (2015)","DOI":"10.1109\/DSN.2015.35"},{"key":"68_CR7","unstructured":"Rahbarinia, B., Perdisci, R., Antonakakis, M., Dagon, D.: SinkMiner: Mining botnet sinkholes for fun and profit. In: The 6th USENIX Workshop on Large-Scale Exploits and Emergent Threats. USENIX (2013)"},{"key":"68_CR8","doi-asserted-by":"crossref","unstructured":"Ramachandran, A., Feamster, N.: Understanding the network-level behavior of spammers. In: ACM SIGCOMM Computer Communication Review, vol. 36, pp. 291\u2013302. ACM (2006)","DOI":"10.1145\/1151659.1159947"},{"key":"68_CR9","doi-asserted-by":"crossref","unstructured":"Wang, X., Zheng, K., Niu, X., Wu, B., Wu, C.: Detection of command and control in advanced persistent threat based on independent access. In: IEEE International Conference on Communications (ICC), pp. 1\u20136. IEEE (2016)","DOI":"10.1109\/ICC.2016.7511197"},{"key":"68_CR10","doi-asserted-by":"publisher","first-page":"1132","DOI":"10.1109\/ACCESS.2015.2458581","volume":"3","author":"G Zhao","year":"2015","unstructured":"Zhao, G., Xu, K., Xu, L., Wu, B.: Detecting APT malware infections based on malicious dns and traffic analysis. IEEE Access 3, 1132\u20131142 (2015)","journal-title":"IEEE Access"}],"container-title":["Communications in Computer and Information Science","New Trends in Computer Technologies and Applications"],"original-title":[],"language":"en","link":[{"URL":"http:\/\/link.springer.com\/content\/pdf\/10.1007\/978-981-13-9190-3_68","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2019,7,10]],"date-time":"2019-07-10T13:09:56Z","timestamp":1562764196000},"score":1,"resource":{"primary":{"URL":"http:\/\/link.springer.com\/10.1007\/978-981-13-9190-3_68"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2019]]},"ISBN":["9789811391897","9789811391903"],"references-count":10,"URL":"https:\/\/doi.org\/10.1007\/978-981-13-9190-3_68","relation":{},"ISSN":["1865-0929","1865-0937"],"issn-type":[{"type":"print","value":"1865-0929"},{"type":"electronic","value":"1865-0937"}],"subject":[],"published":{"date-parts":[[2019]]},"assertion":[{"value":"11 July 2019","order":1,"name":"first_online","label":"First Online","group":{"name":"ChapterHistory","label":"Chapter History"}},{"value":"ICS","order":1,"name":"conference_acronym","label":"Conference Acronym","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"International Computer Symposium","order":2,"name":"conference_name","label":"Conference Name","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"Yunlin","order":3,"name":"conference_city","label":"Conference City","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"Taiwan","order":4,"name":"conference_country","label":"Conference Country","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"2018","order":5,"name":"conference_year","label":"Conference Year","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"20 December 2018","order":7,"name":"conference_start_date","label":"Conference Start Date","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"22 December 2018","order":8,"name":"conference_end_date","label":"Conference End Date","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"23","order":9,"name":"conference_number","label":"Conference Number","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"incosy2018","order":10,"name":"conference_id","label":"Conference ID","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"http:\/\/ics2018.yuntech.edu.tw\/","order":11,"name":"conference_url","label":"Conference URL","group":{"name":"ConferenceInfo","label":"Conference Information"}}]}}