{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,3,18]],"date-time":"2026-03-18T22:22:32Z","timestamp":1773872552336,"version":"3.50.1"},"reference-count":38,"publisher":"IEEE","content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2018,10]]},"DOI":"10.1109\/vizsec.2018.8709230","type":"proceedings-article","created":{"date-parts":[[2019,5,9]],"date-time":"2019-05-09T18:11:43Z","timestamp":1557425503000},"page":"1-8","source":"Crossref","is-referenced-by-count":25,"title":["Eventpad: Rapid Malware Analysis and Reverse Engineering using Visual Analytics"],"prefix":"10.1109","author":[{"given":"Bram C.M.","family":"Cappers","sequence":"first","affiliation":[]},{"given":"Paulus N.","family":"Meessen","sequence":"additional","affiliation":[]},{"given":"Sandro","family":"Etalle","sequence":"additional","affiliation":[]},{"given":"Jarke J.","family":"van Wijk","sequence":"additional","affiliation":[]}],"member":"263","reference":[{"key":"ref38","doi-asserted-by":"publisher","DOI":"10.1007\/s11432-016-0428-2"},{"key":"ref33","article-title":"Ransomware detection with bro","author":"stokkel","year":"2016","journal-title":"Talk at Bro-Con &#x2018;16 Austin"},{"key":"ref32","doi-asserted-by":"publisher","DOI":"10.1049\/etr.2014.0025"},{"key":"ref31","author":"sikorski","year":"2012","journal-title":"Practical Malware Analysis The Hands-On Guide to Dissecting Malicious Software"},{"key":"ref30","doi-asserted-by":"publisher","DOI":"10.1109\/TVCG.2011.144"},{"key":"ref37","doi-asserted-by":"publisher","DOI":"10.1109\/TVCG.2007.70515"},{"key":"ref36","doi-asserted-by":"publisher","DOI":"10.1016\/j.cose.2017.02.003"},{"key":"ref35","article-title":"A Survey of Visualization Systems for Malware Analysis","author":"wagner","year":"2015","journal-title":"Eurographics Conference on Visualization - STARs"},{"key":"ref34","article-title":"The Problem of Concept Drift: Definitions and Related Work","volume":"106","author":"tsymbal","year":"2004","journal-title":"Comput Sci Dep Trinity Coll Dublin"},{"key":"ref10","doi-asserted-by":"publisher","DOI":"10.1109\/TVCG.2017.2745278"},{"key":"ref11","article-title":"Wireshark-network protocol analyzer","author":"combs","year":"2008"},{"key":"ref12","first-page":"83","article-title":"Visual Exploration of Malicious Network Objects using Semantic Zoom, Interactive Encoding and Dynamic Queries","author":"conti","year":"2005","journal-title":"IEEE Workshop on Visualization for Computer Security"},{"key":"ref13","article-title":"Cantordust (derbycon 2012)","author":"domas","year":"2012"},{"key":"ref14","doi-asserted-by":"publisher","DOI":"10.1109\/ISI.2013.6578845"},{"key":"ref15","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-319-66402-6_1"},{"key":"ref16","doi-asserted-by":"publisher","DOI":"10.1016\/j.diin.2010.05.009"},{"key":"ref17","doi-asserted-by":"publisher","DOI":"10.1145\/2517957.2517962"},{"key":"ref18","first-page":"14","article-title":"Visualization as support for web honeypot data analysis","volume":"4","author":"krzysztof","year":"2015","journal-title":"Journal of Information Systems Management"},{"key":"ref19","doi-asserted-by":"publisher","DOI":"10.1109\/IAW.2005.1495939"},{"key":"ref28","article-title":"A Survey of Visualization Systems for Malware Analysis","author":"reuille","year":"2014","journal-title":"Virus Bulletin OpenDNS"},{"key":"ref4","doi-asserted-by":"publisher","DOI":"10.1145\/2381896.2381900"},{"key":"ref27","article-title":"The Perils of Deep Packet Inspection","author":"porter","year":"2005","journal-title":"Security Focus"},{"key":"ref3","year":"0"},{"key":"ref6","first-page":"227","article-title":"Trace alignment in process mining: opportunities for process diagnostics","author":"bose","year":"2010","journal-title":"International Conference on Business Process Management"},{"key":"ref29","article-title":"Rule Ceation in a Knowledge-assisted Visual Analytics Prototype for Malware Analysis","author":"schick","year":"0"},{"key":"ref5","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-319-66332-6_6"},{"key":"ref8","doi-asserted-by":"publisher","DOI":"10.1109\/VIZSEC.2015.7312768"},{"key":"ref7","first-page":"447","article-title":"Towards a Masquerade Detection System based on Users Tasks","author":"cami\u00f1a","year":"2014","journal-title":"International Workshop on Recent Advances in Intrusion Detection"},{"key":"ref2","year":"0"},{"key":"ref9","doi-asserted-by":"publisher","DOI":"10.1109\/VIZSEC.2016.7739579"},{"key":"ref1","year":"0"},{"key":"ref20","article-title":"Trend micro","author":"micro","year":"0"},{"key":"ref22","author":"m\u00fclders","year":"2017","journal-title":"Network based Ransomware Detection on the Samba Protocol"},{"key":"ref21","article-title":"Wannacry and petya","year":"2017"},{"key":"ref24","doi-asserted-by":"publisher","DOI":"10.1145\/2016904.2016908"},{"key":"ref23","doi-asserted-by":"publisher","DOI":"10.1109\/TVCG.2009.111"},{"key":"ref26","first-page":"169","article-title":"Ransomware: Current Trend, Challenges, and Research Directions","volume":"1","author":"popoola","year":"2017","journal-title":"Proceedings of the World Congress on Engineering and Computer Science"},{"key":"ref25","author":"nativ","year":"2016","journal-title":"theZoo"}],"event":{"name":"2018 IEEE Symposium on Visualization for Cyber Security (VizSec)","location":"Berlin, Germany","start":{"date-parts":[[2018,10,22]]},"end":{"date-parts":[[2018,10,22]]}},"container-title":["2018 IEEE Symposium on Visualization for Cyber Security (VizSec)"],"original-title":[],"link":[{"URL":"http:\/\/xplorestaging.ieee.org\/ielx7\/8706256\/8709176\/08709230.pdf?arnumber=8709230","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2019,5,27]],"date-time":"2019-05-27T19:56:13Z","timestamp":1558986973000},"score":1,"resource":{"primary":{"URL":"https:\/\/ieeexplore.ieee.org\/document\/8709230\/"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2018,10]]},"references-count":38,"URL":"https:\/\/doi.org\/10.1109\/vizsec.2018.8709230","relation":{},"subject":[],"published":{"date-parts":[[2018,10]]}}}