{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2024,10,29]],"date-time":"2024-10-29T14:20:41Z","timestamp":1730211641608,"version":"3.28.0"},"reference-count":28,"publisher":"IEEE","license":[{"start":{"date-parts":[[2023,7,31]],"date-time":"2023-07-31T00:00:00Z","timestamp":1690761600000},"content-version":"stm-asf","delay-in-days":0,"URL":"https:\/\/doi.org\/10.15223\/policy-029"},{"start":{"date-parts":[[2023,7,31]],"date-time":"2023-07-31T00:00:00Z","timestamp":1690761600000},"content-version":"stm-asf","delay-in-days":0,"URL":"https:\/\/doi.org\/10.15223\/policy-037"}],"content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2023,7,31]]},"DOI":"10.1109\/csr57506.2023.10224951","type":"proceedings-article","created":{"date-parts":[[2023,8,28]],"date-time":"2023-08-28T17:50:16Z","timestamp":1693245016000},"page":"289-294","source":"Crossref","is-referenced-by-count":0,"title":["Detecting Internal Reconnaissance Behavior Through Classification of Command Collections"],"prefix":"10.1109","author":[{"given":"Luke","family":"Vandenberghe","sequence":"first","affiliation":[{"name":"Interset Data Science, Open Text,Ottawa,Ontario,Canada"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Hari Manassery","family":"Koduvely","sequence":"additional","affiliation":[{"name":"Interset Data Science, Open Text,Ottawa,Ontario,Canada"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Maria","family":"Pospelova","sequence":"additional","affiliation":[{"name":"Interset Data Science, Open Text,Ottawa,Ontario,Canada"}],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"263","reference":[{"key":"ref13","doi-asserted-by":"publisher","DOI":"10.1109\/PCCC.2018.8711277"},{"key":"ref12","doi-asserted-by":"publisher","DOI":"10.1155\/2018\/9327215"},{"key":"ref15","doi-asserted-by":"publisher","DOI":"10.1145\/3196494.3196511"},{"key":"ref14","doi-asserted-by":"publisher","DOI":"10.1162\/neco.1997.9.8.1735"},{"key":"ref11","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-030-69143-1_14"},{"key":"ref10","doi-asserted-by":"publisher","DOI":"10.1016\/j.cose.2021.102221"},{"key":"ref2","article-title":"Survey and Taxonomy of Ad-versarial Reconnaissance Techniques","volume":"abs 2105 4749","author":"roy","year":"2021","journal-title":"CoRR"},{"journal-title":"Reconnaissance Tactic TA0043 - Enterprise - MITRE ATT&CK","article-title":"Reconnaissance","year":"2021","key":"ref1"},{"key":"ref17","first-page":"366","article-title":"An Application of Machine Learning to Anomaly Detection","author":"lane","year":"1997","journal-title":"In Proceedings of the 20th National Information Systems Security Conference"},{"key":"ref16","doi-asserted-by":"publisher","DOI":"10.11575\/PRISM\/10182"},{"journal-title":"Keras (2021)","article-title":"Keras documentation: LSTM layer","year":"0","key":"ref19"},{"journal-title":"scikit (2021)","article-title":"2.5. Decomposing signals in components (matrix factorization problems)&#x00B6;","year":"0","key":"ref18"},{"journal-title":"O'Reilly Media - Technology and Business Training (2021)","year":"0","key":"ref24"},{"journal-title":"GitHub (2021)","article-title":"VirusTotal\/yara","year":"0","key":"ref23"},{"journal-title":"Check Point Research (2019)","article-title":"SpeakUp: A New Undetected Backdoor Linux Trojan","year":"0","key":"ref26"},{"key":"ref25","article-title":"Windows Commands Abused by Attackers","author":"tomonaga","year":"0","journal-title":"JPCERT\/CC Eyes (2016)"},{"key":"ref20","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-319-59060-8_50"},{"key":"ref22","article-title":"Adam: A Method for Stochastic Optimization","author":"kingma","year":"2014","journal-title":"International Conference on Learning Representations"},{"key":"ref21","doi-asserted-by":"publisher","DOI":"10.1109\/5.58337"},{"key":"ref28","doi-asserted-by":"publisher","DOI":"10.1109\/DSN.2002.1028903"},{"journal-title":"Welivesecurity (2020)","year":"0","author":"faou","key":"ref27"},{"key":"ref8","doi-asserted-by":"publisher","DOI":"10.5555\/944919.944937"},{"key":"ref7","doi-asserted-by":"crossref","first-page":"168","DOI":"10.1016\/j.comcom.2020.03.048","article-title":"HMMs based masquerade detection for network security on with parallel computing","volume":"156","author":"liu","year":"2020","journal-title":"Computer Communications"},{"key":"ref9","article-title":"Masquerade detection: A topic model based approach","author":"parkhouse","year":"2018","journal-title":"SUMMIT"},{"key":"ref4","doi-asserted-by":"publisher","DOI":"10.1214\/ss\/998929476"},{"journal-title":"Discovery Tactic TA0007 - Enter-prise - MITRE ATT&CK&#x00AE;","article-title":"Discovery","year":"2021","key":"ref3"},{"key":"ref6","doi-asserted-by":"publisher","DOI":"10.1109\/ACCESS.2020.3039166"},{"key":"ref5","doi-asserted-by":"publisher","DOI":"10.1016\/j.cose.2011.08.003"}],"event":{"name":"2023 IEEE International Conference on Cyber Security and Resilience (CSR)","start":{"date-parts":[[2023,7,31]]},"location":"Venice, Italy","end":{"date-parts":[[2023,8,2]]}},"container-title":["2023 IEEE International Conference on Cyber Security and Resilience (CSR)"],"original-title":[],"link":[{"URL":"http:\/\/xplorestaging.ieee.org\/ielx7\/10224900\/10224823\/10224951.pdf?arnumber=10224951","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2023,9,25]],"date-time":"2023-09-25T17:51:21Z","timestamp":1695664281000},"score":1,"resource":{"primary":{"URL":"https:\/\/ieeexplore.ieee.org\/document\/10224951\/"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2023,7,31]]},"references-count":28,"URL":"https:\/\/doi.org\/10.1109\/csr57506.2023.10224951","relation":{},"subject":[],"published":{"date-parts":[[2023,7,31]]}}}