{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,11,26]],"date-time":"2025-11-26T16:33:57Z","timestamp":1764174837799,"version":"3.28.0"},"reference-count":30,"publisher":"IEEE","license":[{"start":{"date-parts":[[2019,11,1]],"date-time":"2019-11-01T00:00:00Z","timestamp":1572566400000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/ieeexplore.ieee.org\/Xplorehelp\/downloads\/license-information\/IEEE.html"},{"start":{"date-parts":[[2019,11,1]],"date-time":"2019-11-01T00:00:00Z","timestamp":1572566400000},"content-version":"stm-asf","delay-in-days":0,"URL":"https:\/\/doi.org\/10.15223\/policy-029"},{"start":{"date-parts":[[2019,11,1]],"date-time":"2019-11-01T00:00:00Z","timestamp":1572566400000},"content-version":"stm-asf","delay-in-days":0,"URL":"https:\/\/doi.org\/10.15223\/policy-037"}],"content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2019,11]]},"DOI":"10.1109\/eisic49498.2019.9108886","type":"proceedings-article","created":{"date-parts":[[2020,6,5]],"date-time":"2020-06-05T21:02:11Z","timestamp":1591390931000},"page":"40-47","source":"Crossref","is-referenced-by-count":20,"title":["Attack Hypothesis Generation"],"prefix":"10.1109","author":[{"given":"Aviad","family":"Elitzur","sequence":"first","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Rami","family":"Puzis","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Polina","family":"Zilberman","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"263","reference":[{"key":"ref30","first-page":"1703","author":"liu","year":"2009","journal-title":"Mean Average Precision"},{"key":"ref10","article-title":"Finding cyber threats with att&ck-based analytics","author":"strom","year":"2017","journal-title":"tech rep Technical Report MTR170202"},{"journal-title":"Holmes real-time apt detection through correlation of suspicious information flows","year":"2018","author":"milajerdi","key":"ref11"},{"key":"ref12","doi-asserted-by":"publisher","DOI":"10.1109\/SOSE.2014.53"},{"key":"ref13","first-page":"80","article-title":"Intelligence-driven computer network defense informed by analysis of adversary campaigns and intrusion kill chains","volume":"1","author":"hutchins","year":"2011","journal-title":"Leading Issues in Information Warfare & Security Research"},{"key":"ref14","first-page":"135","article-title":"Modeling and reconstruction of multistage attacks","author":"rubinshtein","year":"0","journal-title":"2016 IEEE International Conference on Software Science Technology and Engineering (SWSTE)"},{"key":"ref15","doi-asserted-by":"publisher","DOI":"10.1007\/s12530-018-9234-z"},{"key":"ref16","doi-asserted-by":"publisher","DOI":"10.1109\/ARES.2013.84"},{"key":"ref17","doi-asserted-by":"publisher","DOI":"10.1109\/CyberSecurity.2012.16"},{"key":"ref18","first-page":"68","article-title":"Ontology generation of advanced persistent threats and their automated analysis","volume":"9","author":"iqbal","year":"2016","journal-title":"NUST Journal Of Engineering Sciences"},{"key":"ref19","doi-asserted-by":"publisher","DOI":"10.23919\/INM.2017.7987435"},{"key":"ref28","doi-asserted-by":"publisher","DOI":"10.1109\/ASONAM.2010.87"},{"key":"ref4","doi-asserted-by":"publisher","DOI":"10.1016\/j.cose.2017.09.001"},{"key":"ref27","doi-asserted-by":"publisher","DOI":"10.1145\/324133.324140"},{"key":"ref3","first-page":"29","article-title":"Definition: Threat intelligence.[sl], 2013","author":"mcmillan","year":"2013","journal-title":"Citado na"},{"key":"ref6","article-title":"Definitive Guide to Cyber Threat Intelligence: Using Knowledge about Adversaries to Win the War against Targeted Attacks","author":"friedman","year":"2015","journal-title":"CyberEdge Group"},{"key":"ref29","doi-asserted-by":"publisher","DOI":"10.1016\/j.procs.2016.06.047"},{"journal-title":"The pyramid of pain (2014)","year":"2013","author":"bianco","key":"ref5"},{"key":"ref8","doi-asserted-by":"crossref","first-page":"16","DOI":"10.1186\/s42400-018-0017-4","article-title":"Graph-based visual analytics for cyber threat intelligence","volume":"1","author":"bohm","year":"2018","journal-title":"Cybersecurity"},{"key":"ref7","first-page":"49","article-title":"Developing an ontology of the cyber security domain","author":"obrst","year":"2012","journal-title":"STIDS"},{"key":"ref2","doi-asserted-by":"publisher","DOI":"10.1109\/EISIC.2017.20"},{"key":"ref9","doi-asserted-by":"publisher","DOI":"10.1145\/3029806.3029811"},{"key":"ref1","article-title":"Threat intelligence: What it is, and how to use it effectively","volume":"15","author":"bromiley","year":"2016","journal-title":"Sans Institute Infosec Reading Room"},{"key":"ref20","doi-asserted-by":"publisher","DOI":"10.1109\/PlatCon.2018.8472752"},{"key":"ref22","doi-asserted-by":"publisher","DOI":"10.1016\/j.cose.2017.02.005"},{"key":"ref21","doi-asserted-by":"publisher","DOI":"10.1109\/BigData.2018.8622111"},{"key":"ref24","article-title":"Indicators of attack vs. indicators of compromise","author":"decianno","year":"2014","journal-title":"Crowds"},{"key":"ref23","doi-asserted-by":"publisher","DOI":"10.1007\/s10207-019-00433-2"},{"key":"ref26","doi-asserted-by":"publisher","DOI":"10.1145\/2542182.2542192"},{"key":"ref25","doi-asserted-by":"publisher","DOI":"10.1145\/371920.372071"}],"event":{"name":"2019 European Intelligence and Security Informatics Conference (EISIC)","start":{"date-parts":[[2019,11,26]]},"location":"Oulu, Finland","end":{"date-parts":[[2019,11,27]]}},"container-title":["2019 European Intelligence and Security Informatics Conference (EISIC)"],"original-title":[],"link":[{"URL":"http:\/\/xplorestaging.ieee.org\/ielx7\/9102321\/9108777\/09108886.pdf?arnumber=9108886","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2022,7,19]],"date-time":"2022-07-19T20:21:09Z","timestamp":1658262069000},"score":1,"resource":{"primary":{"URL":"https:\/\/ieeexplore.ieee.org\/document\/9108886\/"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2019,11]]},"references-count":30,"URL":"https:\/\/doi.org\/10.1109\/eisic49498.2019.9108886","relation":{},"subject":[],"published":{"date-parts":[[2019,11]]}}}