{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2024,9,8]],"date-time":"2024-09-08T05:31:37Z","timestamp":1725773497300},"reference-count":34,"publisher":"IEEE","content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2015,9]]},"DOI":"10.1109\/ccst.2015.7389693","type":"proceedings-article","created":{"date-parts":[[2016,1,25]],"date-time":"2016-01-25T21:35:32Z","timestamp":1453757732000},"page":"263-268","source":"Crossref","is-referenced-by-count":2,"title":["The bilateral communication-based dynamic extensible honeypot"],"prefix":"10.1109","author":[{"given":"Chun-Yi","family":"Wang","sequence":"first","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Ya-Lyue","family":"Jhao","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Chuan-Sheng","family":"Wang","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Shih-Jen","family":"Chen","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Fu-Hau","family":"Hsu","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Yao-Hsin","family":"Chen","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"263","reference":[{"key":"ref33","article-title":"Defending against internet worms: a signature-based approach","author":"tang","year":"2005","journal-title":"Proceedings of the 24th Annual Joint Conference of the IEEE Computer and Communications Societies (INFOCOM 2005)"},{"journal-title":"Honeynet Project Know your enemy GenII honeynets","year":"2005","key":"ref32"},{"journal-title":"Dynamic-Link Library Functions","year":"0","key":"ref31"},{"journal-title":"Process and Thread Functions","year":"0","key":"ref30"},{"key":"ref34","article-title":"Linux\/x86 Connect back, Download a File and Execute 149 bytes","author":"militan","year":"0","journal-title":"Exploit DB"},{"key":"ref10","article-title":"StackGhost: Hardware facilitated stack protection","author":"frantzen","year":"2001","journal-title":"Proceedings of the 10th USENIX Security Symposium"},{"key":"ref11","article-title":"Enlisting hardware architecture to thwart malicious code injection","author":"lee","year":"2003","journal-title":"First International Conference on Security in Pervasive Computing"},{"key":"ref12","article-title":"A processor architecture defense against buffer overflow attacks","author":"john","year":"2003","journal-title":"Proceedings of International Conference on Information Technology Research and Education (ITRE 2003)"},{"key":"ref13","article-title":"Scalable Network-based Buffer Overflow Attack Detection","author":"fu-hau","year":"2006","journal-title":"Proc ACM\/IEEE Symposium on Architecture for Networking and Communications Systems (ANCS"},{"key":"ref14","article-title":"NOZZLE: A Defense Against Heap-spraying Code Injection Attacks","author":"ratanaworabhan","year":"2009","journal-title":"Proceedings of the 2009 USENIX Annual Technical Conference"},{"key":"ref15","doi-asserted-by":"publisher","DOI":"10.1007\/0-387-25660-1_25"},{"key":"ref16","article-title":"Emulation-based detection of non-self-contained polymorphic shellcode","author":"michalis","year":"2007","journal-title":"Proceedings of the 10th International Symposium on Recent Advances in Intrusion Detection (RAID 2007)"},{"key":"ref17","doi-asserted-by":"publisher","DOI":"10.1007\/3-540-36084-0_15"},{"key":"ref18","doi-asserted-by":"publisher","DOI":"10.1109\/MSECP.2004.1264861"},{"key":"ref19","doi-asserted-by":"publisher","DOI":"10.1109\/CRISIS.2009.5411968"},{"journal-title":"Windows Sockets 2","year":"0","key":"ref28"},{"journal-title":"Sebek","year":"0","key":"ref4"},{"journal-title":"James Shewmaker Analyzing DLL Injection GSM Presentation","year":"2006","key":"ref27"},{"journal-title":"Honeynet","year":"0","key":"ref3"},{"journal-title":"KFSensor","year":"0","key":"ref6"},{"journal-title":"Winsock Functions","year":"0","key":"ref29"},{"journal-title":"HoneyBot","year":"0","key":"ref5"},{"key":"ref8","doi-asserted-by":"publisher","DOI":"10.1109\/MICRO.2004.20"},{"key":"ref7","doi-asserted-by":"publisher","DOI":"10.1109\/MICRO.2006.48"},{"article-title":"Automated Web Patrol with Strider HoneyMonkeys: Finding Web Sites That Exploit Browser Vulnerabilities","year":"0","author":"yi-min","key":"ref2"},{"key":"ref9","article-title":"StackGuard: Automatic adaptive detection and prevention of bufferoverflow attacks","author":"cowan","year":"1998","journal-title":"Proceedings of the 7th USENIX Security Symposium"},{"journal-title":"Microsoft HoneyMonkey","year":"0","key":"ref1"},{"key":"ref20","doi-asserted-by":"publisher","DOI":"10.1109\/JCSSE.2011.5930083"},{"key":"ref22","article-title":"On the Incentives of Management Honeypot","author":"hong-xia","year":"2011","journal-title":"Proceedings of the 4th International Conference on Biomedical Engineering and Informatics (BMEI 2011)"},{"key":"ref21","doi-asserted-by":"publisher","DOI":"10.1109\/ICEE.2010.297"},{"key":"ref24","doi-asserted-by":"publisher","DOI":"10.1109\/DSN.2006.38"},{"key":"ref23","doi-asserted-by":"publisher","DOI":"10.1109\/NSS.2009.65"},{"journal-title":"OS Platform Statistics","year":"0","key":"ref26"},{"key":"ref25","doi-asserted-by":"publisher","DOI":"10.1504\/IJICS.2010.031858"}],"event":{"name":"2015 International Carnahan Conference on Security Technology (ICCST)","start":{"date-parts":[[2015,9,21]]},"location":"Taipei, Taiwan","end":{"date-parts":[[2015,9,24]]}},"container-title":["2015 International Carnahan Conference on Security Technology (ICCST)"],"original-title":[],"link":[{"URL":"http:\/\/xplorestaging.ieee.org\/ielx7\/7369421\/7389647\/07389693.pdf?arnumber=7389693","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2017,3,25]],"date-time":"2017-03-25T02:34:37Z","timestamp":1490409277000},"score":1,"resource":{"primary":{"URL":"http:\/\/ieeexplore.ieee.org\/document\/7389693\/"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2015,9]]},"references-count":34,"URL":"https:\/\/doi.org\/10.1109\/ccst.2015.7389693","relation":{},"subject":[],"published":{"date-parts":[[2015,9]]}}}