{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,6,5]],"date-time":"2026-06-05T04:37:20Z","timestamp":1780634240266,"version":"3.54.1"},"reference-count":32,"publisher":"IEEE","license":[{"start":{"date-parts":[[2020,6,1]],"date-time":"2020-06-01T00:00:00Z","timestamp":1590969600000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/ieeexplore.ieee.org\/Xplorehelp\/downloads\/license-information\/IEEE.html"},{"start":{"date-parts":[[2020,6,1]],"date-time":"2020-06-01T00:00:00Z","timestamp":1590969600000},"content-version":"stm-asf","delay-in-days":0,"URL":"https:\/\/doi.org\/10.15223\/policy-029"},{"start":{"date-parts":[[2020,6,1]],"date-time":"2020-06-01T00:00:00Z","timestamp":1590969600000},"content-version":"stm-asf","delay-in-days":0,"URL":"https:\/\/doi.org\/10.15223\/policy-037"}],"content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2020,6]]},"DOI":"10.1109\/cybersecurity49315.2020.9138852","type":"proceedings-article","created":{"date-parts":[[2020,7,13]],"date-time":"2020-07-13T22:45:17Z","timestamp":1594680317000},"page":"1-10","source":"Crossref","is-referenced-by-count":12,"title":["Automated Vulnerability Testing via Executable Attack Graphs"],"prefix":"10.1109","author":[{"given":"Drew","family":"Malzahn","sequence":"first","affiliation":[],"role":[{"vocabulary":"crossref","role":"author"}]},{"given":"Zachary","family":"Birnbaum","sequence":"additional","affiliation":[],"role":[{"vocabulary":"crossref","role":"author"}]},{"given":"Cimone","family":"Wright-Hamor","sequence":"additional","affiliation":[],"role":[{"vocabulary":"crossref","role":"author"}]}],"member":"263","reference":[{"key":"ref32","doi-asserted-by":"publisher","DOI":"10.1108\/09685221111173058"},{"key":"ref31","article-title":"XSB","year":"2017"},{"key":"ref30","doi-asserted-by":"publisher","DOI":"10.1109\/TR.2013.2257052"},{"key":"ref10","doi-asserted-by":"publisher","DOI":"10.1201\/9781420031232"},{"key":"ref11","first-page":"1","article-title":"Intrusion response systems: survey and taxonomy","volume":"12","author":"shameli-sendi","year":"2012","journal-title":"Int J Comput Sci Netw Secur"},{"key":"ref12","doi-asserted-by":"publisher","DOI":"10.1155\/2012\/151205"},{"key":"ref13","article-title":"Openvas","year":"2017"},{"key":"ref14","article-title":"Download nessus &#x2014; tenable","year":"2019"},{"key":"ref15","doi-asserted-by":"publisher","DOI":"10.1145\/3264888.3264891"},{"key":"ref16","doi-asserted-by":"publisher","DOI":"10.1109\/HPCC\/SmartCity\/DSS.2018.00237"},{"key":"ref17","doi-asserted-by":"publisher","DOI":"10.1109\/TENCON.2017.8227911"},{"key":"ref18","article-title":"NetSpa: A network security planning architecture","author":"artz","year":"2002","journal-title":"Ph D Dissertation"},{"key":"ref19","doi-asserted-by":"publisher","DOI":"10.1007\/978-1-4419-0140-8_7"},{"key":"ref28","doi-asserted-by":"publisher","DOI":"10.1109\/ACSAC.2009.21"},{"key":"ref4","doi-asserted-by":"publisher","DOI":"10.1007\/s11235-009-9248-8"},{"key":"ref27","doi-asserted-by":"publisher","DOI":"10.1007\/11909033_20"},{"key":"ref3","doi-asserted-by":"publisher","DOI":"10.1016\/j.cose.2015.11.001"},{"key":"ref6","first-page":"131","article-title":"The significance of information security risk assessments: Exploring the consensus of raters&#x2019; perceptions of probability and severity","author":"hallberg","year":"2017","journal-title":"Proceedings of the International Conference on Security and Management (SAM) The Steering Committee of The World Congress in Computer Science Computer"},{"key":"ref29","doi-asserted-by":"publisher","DOI":"10.1145\/1029208.1029225"},{"key":"ref5","article-title":"Cyber kill chain&#x00AE;","author":"martin","year":"2014"},{"key":"ref8","doi-asserted-by":"publisher","DOI":"10.1109\/THS.2012.6459864"},{"key":"ref7","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-642-55032-4_47"},{"key":"ref2","article-title":"SP 800-30. risk management guide for information technology systems","author":"stoneburner","year":"2002"},{"key":"ref9","doi-asserted-by":"publisher","DOI":"10.1109\/MSP.2005.23"},{"key":"ref1","article-title":"Cyber threat modeling: Survey, assessment, and representative framework","author":"bodeau","year":"2018","journal-title":"HSSEDI"},{"key":"ref20","first-page":"58","article-title":"Fidius: Intelligent support for vulnerability testing","author":"elsbroek","year":"2011","journal-title":"Working Notes for the 2011 IJCAI Workshop on Intelligent Security (SecArt)"},{"key":"ref22","article-title":"Metasploit Framework","year":"2019"},{"key":"ref21","article-title":"Attack planning in the real world","author":"obes","year":"2013","journal-title":"arXiv preprint arXiv 1306 4044"},{"key":"ref24","article-title":"CVE-2018-12635","year":"2017"},{"key":"ref23","article-title":"CVE-2018-11769","year":"0"},{"key":"ref26","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-319-66505-4_3"},{"key":"ref25","article-title":"Wannacry ransomware campaign exploiting smb vulnerability","author":"cert","year":"2017"}],"event":{"name":"2020 International Conference on Cyber Security and Protection of Digital Services (Cyber Security)","location":"Dublin, Ireland","start":{"date-parts":[[2020,6,15]]},"end":{"date-parts":[[2020,6,19]]}},"container-title":["2020 International Conference on Cyber Security and Protection of Digital Services (Cyber Security)"],"original-title":[],"link":[{"URL":"http:\/\/xplorestaging.ieee.org\/ielx7\/9136807\/9138848\/09138852.pdf?arnumber=9138852","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2022,6,27]],"date-time":"2022-06-27T15:46:57Z","timestamp":1656344817000},"score":1,"resource":{"primary":{"URL":"https:\/\/ieeexplore.ieee.org\/document\/9138852\/"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2020,6]]},"references-count":32,"URL":"https:\/\/doi.org\/10.1109\/cybersecurity49315.2020.9138852","relation":{},"subject":[],"published":{"date-parts":[[2020,6]]}}}