{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,12,15]],"date-time":"2025-12-15T19:39:21Z","timestamp":1765827561408,"version":"3.41.0"},"publisher-location":"Republic and Canton of Geneva, Switzerland","reference-count":37,"publisher":"International World Wide Web Conferences Steering Committee","license":[{"start":{"date-parts":[[2016,4,11]],"date-time":"2016-04-11T00:00:00Z","timestamp":1460332800000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/www.acm.org\/publications\/policies\/copyright_policy#Background"}],"content-domain":{"domain":["dl.acm.org"],"crossmark-restriction":true},"short-container-title":[],"published-print":{"date-parts":[[2016,4,11]]},"DOI":"10.1145\/2872427.2883004","type":"proceedings-article","created":{"date-parts":[[2017,1,23]],"date-time":"2017-01-23T20:35:52Z","timestamp":1485203752000},"page":"1033-1043","update-policy":"https:\/\/doi.org\/10.1145\/crossmark-policy","source":"Crossref","is-referenced-by-count":40,"title":["Stress Testing the Booters"],"prefix":"10.1145","author":[{"given":"Mohammad","family":"Karami","sequence":"first","affiliation":[{"name":"George Mason University, Fairfax, VA, USA"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Youngsam","family":"Park","sequence":"additional","affiliation":[{"name":"University of Maryland, College Park, College Park, MD, USA"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Damon","family":"McCoy","sequence":"additional","affiliation":[{"name":"New York University, New York, NY, USA"}],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"320","published-online":{"date-parts":[[2016,4,11]]},"reference":[{"key":"e_1_3_2_1_1_1","unstructured":"Open NTP Scanning Project. http:\/\/OpenNTPProject.org\/.  Open NTP Scanning Project. http:\/\/OpenNTPProject.org\/."},{"key":"e_1_3_2_1_2_1","unstructured":"Open Resolver Project. http:\/\/OpenResolverProject.org\/.  Open Resolver Project. http:\/\/OpenResolverProject.org\/."},{"key":"e_1_3_2_1_3_1","unstructured":"Lizard Squad's Xbox Live PSN attacks were a 'marketing scheme' for new DDoS service. http:\/\/www.dailydot.com\/crime\/lizard-squad-lizard-stresser-ddos-service-psn-xbox-live-sony-microsoft\/ 2014.  Lizard Squad's Xbox Live PSN attacks were a 'marketing scheme' for new DDoS service. http:\/\/www.dailydot.com\/crime\/lizard-squad-lizard-stresser-ddos-service-psn-xbox-live-sony-microsoft\/ 2014."},{"key":"e_1_3_2_1_4_1","volume-title":"Why Can't Sony And Microsoft Protect Themselves? http:\/\/www.ibtimes.com\/lizard-squad-strikes-again-why-cant-sony-microsoft-protect-themselves-1823282","author":"Strikes Again Lizard Squad","year":"2015","unstructured":"Lizard Squad Strikes Again : Why Can't Sony And Microsoft Protect Themselves? http:\/\/www.ibtimes.com\/lizard-squad-strikes-again-why-cant-sony-microsoft-protect-themselves-1823282 , 2015 . Lizard Squad Strikes Again: Why Can't Sony And Microsoft Protect Themselves? http:\/\/www.ibtimes.com\/lizard-squad-strikes-again-why-cant-sony-microsoft-protect-themselves-1823282, 2015."},{"key":"e_1_3_2_1_5_1","first-page":"8","volume-title":"Proceedings of the 5th USENIX Conference on Large-Scale Exploits and Emergent Threats, LEET'12","author":"B\u00fcscher A.","year":"2012","unstructured":"A. B\u00fcscher and T. Holz . Tracking DDoS Attacks: Insights into the Business of Disrupting the Web . In Proceedings of the 5th USENIX Conference on Large-Scale Exploits and Emergent Threats, LEET'12 , pages 8 -- 8 , Berkeley, CA, USA , 2012 . USENIX Association. A. B\u00fcscher and T. Holz. Tracking DDoS Attacks: Insights into the Business of Disrupting the Web. In Proceedings of the 5th USENIX Conference on Large-Scale Exploits and Emergent Threats, LEET'12, pages 8--8, Berkeley, CA, USA, 2012. USENIX Association."},{"key":"e_1_3_2_1_6_1","volume-title":"Workshop on the Economics of Information Security","author":"Cetin O.","year":"2015","unstructured":"O. Cetin , M. H. Jhaveri , C. Ganan , M. van Eeten , and T. Moore . Understanding the role of sender reputation in abuse reporting and cleanup . In Workshop on the Economics of Information Security , 2015 . O. Cetin, M. H. Jhaveri, C. Ganan, M. van Eeten, and T. Moore. Understanding the role of sender reputation in abuse reporting and cleanup. In Workshop on the Economics of Information Security, 2015."},{"key":"e_1_3_2_1_7_1","volume-title":"Proceedings (online) of the Fourteenth Workshop on the Economics of Information Security (WEIS)","author":"Clayton R.","year":"2015","unstructured":"R. Clayton , T. Moore , and N. Christin . Concentrating correctly on cybercrime concentration . In Proceedings (online) of the Fourteenth Workshop on the Economics of Information Security (WEIS) , Delft, Netherlands , June 2015 . R. Clayton, T. Moore, and N. Christin. Concentrating correctly on cybercrime concentration. In Proceedings (online) of the Fourteenth Workshop on the Economics of Information Security (WEIS), Delft, Netherlands, June 2015."},{"key":"e_1_3_2_1_8_1","volume-title":"Proceedings of the Steps to Reducing Unwanted Traffic on the Internet, SRUTI'05","author":"Cooke E.","year":"2005","unstructured":"E. Cooke , F. Jahanian , and D. McPherson . The zombie roundup: Understanding, detecting, and disrupting botnets . In Proceedings of the Steps to Reducing Unwanted Traffic on the Internet, SRUTI'05 . USENIX Association , 2005 . E. Cooke, F. Jahanian, and D. McPherson. The zombie roundup: Understanding, detecting, and disrupting botnets. In Proceedings of the Steps to Reducing Unwanted Traffic on the Internet, SRUTI'05. USENIX Association, 2005."},{"key":"e_1_3_2_1_9_1","doi-asserted-by":"publisher","DOI":"10.1145\/2663716.2663717"},{"key":"e_1_3_2_1_10_1","doi-asserted-by":"publisher","DOI":"10.1145\/2663716.2663755"},{"key":"e_1_3_2_1_11_1","volume-title":"Proceedings of the Network and Distributed System Security Symposium, NDSS 2002","author":"Ioannidis J.","year":"2002","unstructured":"J. Ioannidis and S. M. Bellovin . Implementing Pushback: Router-Based Defense Against DDoS Attacks . In Proceedings of the Network and Distributed System Security Symposium, NDSS 2002 , San Diego, California, USA , 2002 . J. Ioannidis and S. M. Bellovin. Implementing Pushback: Router-Based Defense Against DDoS Attacks. In Proceedings of the Network and Distributed System Security Symposium, NDSS 2002, San Diego, California, USA, 2002."},{"key":"e_1_3_2_1_12_1","first-page":"287","volume-title":"Proceedings of the 2ND Conference on Symposium on Networked Systems Design & Implementation, NSDI'05","author":"Kandula S.","year":"2005","unstructured":"S. Kandula , D. Katabi , M. Jacob , and A. Berger . Botz-4-sale: Surviving Organized DDoS Attacks That Mimic Flash Crowds . In Proceedings of the 2ND Conference on Symposium on Networked Systems Design & Implementation, NSDI'05 , pages 287 -- 300 . USENIX Association , 2005 . S. Kandula, D. Katabi, M. Jacob, and A. Berger. Botz-4-sale: Surviving Organized DDoS Attacks That Mimic Flash Crowds. In Proceedings of the 2ND Conference on Symposium on Networked Systems Design & Implementation, NSDI'05, pages 287--300. USENIX Association, 2005."},{"key":"e_1_3_2_1_13_1","doi-asserted-by":"publisher","DOI":"10.1145\/1455770.1455774"},{"key":"e_1_3_2_1_14_1","volume-title":"Understanding the Emerging Threat of DDoS-as-a-Service. In USENIX Workshop on Large-Scale Exploits and Emergent Threats","author":"Karami M.","year":"2013","unstructured":"M. Karami and D. McCoy . Understanding the Emerging Threat of DDoS-as-a-Service. In USENIX Workshop on Large-Scale Exploits and Emergent Threats , Berkeley, CA , 2013 . USENIX. M. Karami and D. McCoy. Understanding the Emerging Threat of DDoS-as-a-Service. In USENIX Workshop on Large-Scale Exploits and Emergent Threats, Berkeley, CA, 2013. USENIX."},{"key":"e_1_3_2_1_15_1","first-page":"111","volume-title":"Proceedings of the 23rd USENIX Conference on Security Symposium, SEC'14","author":"K\u00fchrer M.","year":"2014","unstructured":"M. K\u00fchrer , T. Hupperich , C. Rossow , and T. Holz . Exit from Hell? Reducing the Impact of Amplification DDoS Attacks . In Proceedings of the 23rd USENIX Conference on Security Symposium, SEC'14 , pages 111 -- 125 . USENIX Association , 2014 . M. K\u00fchrer, T. Hupperich, C. Rossow, and T. Holz. Exit from Hell? Reducing the Impact of Amplification DDoS Attacks. In Proceedings of the 23rd USENIX Conference on Security Symposium, SEC'14, pages 111--125. USENIX Association, 2014."},{"key":"e_1_3_2_1_16_1","volume-title":"Proceedings of the 8th USENIX Workshop on Offensive Technologies","author":"K\u00fchrer M.","year":"2014","unstructured":"M. K\u00fchrer , T. Hupperich , C. Rossow , and T. Holz . Hell of a Handshake: Abusing TCP for Reflective Amplification DDoS Attacks . In Proceedings of the 8th USENIX Workshop on Offensive Technologies , August 2014 . M. K\u00fchrer, T. Hupperich, C. Rossow, and T. Holz. Hell of a Handshake: Abusing TCP for Reflective Amplification DDoS Attacks. In Proceedings of the 8th USENIX Workshop on Offensive Technologies, August 2014."},{"key":"e_1_3_2_1_17_1","doi-asserted-by":"publisher","DOI":"10.1109\/SP.2011.24"},{"key":"e_1_3_2_1_18_1","doi-asserted-by":"publisher","DOI":"10.1145\/2382196.2382285"},{"key":"e_1_3_2_1_19_1","volume-title":"Proceedings of the 21st USENIX Conference on Security Symposium","author":"McCoy D.","year":"2012","unstructured":"D. McCoy , A. Pitsillidis , G. Jordan , N. Weaver , C. Kreibich , B. Krebs , G. M. Voelker , S. Savage , and K. Levchenko . Pharmaleaks: Understanding the business of online pharmaceutical affiliate programs . In Proceedings of the 21st USENIX Conference on Security Symposium , 2012 . D. McCoy, A. Pitsillidis, G. Jordan, N. Weaver, C. Kreibich, B. Krebs, G. M.Voelker, S. Savage, and K. Levchenko. Pharmaleaks: Understanding the business of online pharmaceutical affiliate programs. In Proceedings of the 21st USENIX Conference on Security Symposium, 2012."},{"key":"e_1_3_2_1_20_1","doi-asserted-by":"publisher","DOI":"10.1145\/1132026.1132027"},{"key":"e_1_3_2_1_21_1","doi-asserted-by":"publisher","DOI":"10.1257\/jep.23.3.3"},{"key":"e_1_3_2_1_22_1","doi-asserted-by":"publisher","DOI":"10.1145\/505659.505664"},{"key":"e_1_3_2_1_23_1","volume-title":"Amplification Hell: Revisiting Network Protocols for DDoS Abuse. In Proceedings of the 2014 Network and Distributed System Security (NDSS) Symposium","author":"Rossow C.","year":"2014","unstructured":"C. Rossow . Amplification Hell: Revisiting Network Protocols for DDoS Abuse. In Proceedings of the 2014 Network and Distributed System Security (NDSS) Symposium , February 2014 . C. Rossow. Amplification Hell: Revisiting Network Protocols for DDoS Abuse. In Proceedings of the 2014 Network and Distributed System Security (NDSS) Symposium, February 2014."},{"key":"e_1_3_2_1_24_1","unstructured":"C. Satten. Lossless Gigabit Remote Packet Capture With Linux. http:\/\/staff.washington.edu\/corey\/gulp\/ 2008.  C. Satten. Lossless Gigabit Remote Packet Capture With Linux. http:\/\/staff.washington.edu\/corey\/gulp\/ 2008."},{"key":"e_1_3_2_1_25_1","doi-asserted-by":"publisher","DOI":"10.1145\/347059.347560"},{"key":"e_1_3_2_1_26_1","first-page":"543","volume-title":"Proceedings of the 17th International Conference on Parallel and Distributed Computing Systems","author":"Specht S. M.","year":"2004","unstructured":"S. M. Specht and R. B. Lee . Distributed Denial of Service: Taxonomies of Attacks, Tools, and Countermeasures . In Proceedings of the 17th International Conference on Parallel and Distributed Computing Systems , pages 543 -- 550 , 2004 . S. M. Specht and R. B. Lee. Distributed Denial of Service: Taxonomies of Attacks, Tools, and Countermeasures. In Proceedings of the 17th International Conference on Parallel and Distributed Computing Systems, pages 543--550, 2004."},{"key":"e_1_3_2_1_27_1","doi-asserted-by":"publisher","DOI":"10.1007\/978-1-4614-1981-5_4"},{"key":"e_1_3_2_1_28_1","volume-title":"Proceedings of the 4th USENIX Conference on Large-scale Exploits and Emergent Threats, LEET'11","author":"Stone-Gross B.","year":"2011","unstructured":"B. Stone-Gross , T. Holz , G. Stringhini , and G. Vigna . The Underground Economy of Spam: A Botmaster's Perspective of Coordinating Large-scale Spam Campaigns . In Proceedings of the 4th USENIX Conference on Large-scale Exploits and Emergent Threats, LEET'11 , 2011 . B. Stone-Gross, T. Holz, G. Stringhini, and G. Vigna. The Underground Economy of Spam: A Botmaster's Perspective of Coordinating Large-scale Spam Campaigns. In Proceedings of the 4th USENIX Conference on Large-scale Exploits and Emergent Threats, LEET'11, 2011."},{"key":"e_1_3_2_1_29_1","doi-asserted-by":"publisher","DOI":"10.1145\/2504730.2504731"},{"key":"e_1_3_2_1_30_1","doi-asserted-by":"publisher","DOI":"10.1007\/978-0-387-72367-9_20"},{"key":"e_1_3_2_1_31_1","volume-title":"Proceedings of the Fourteenth Workshop on the Economics of Information Security (WEIS)","author":"Thomas K.","year":"2015","unstructured":"K. Thomas , D. Huang , D. Wang , E. Bursztein , C. Grier , T. Holt , C. Kruegel , D. McCoy , S. Savage , and G. Vigna . Framing dependencies introduced by underground commoditization . In Proceedings of the Fourteenth Workshop on the Economics of Information Security (WEIS) , Delft, Netherlands , June 2015 . K. Thomas, D. Huang, D. Wang, E. Bursztein, C. Grier, T. Holt, C. Kruegel, D. McCoy, S. Savage, and G. Vigna. Framing dependencies introduced by underground commoditization. In Proceedings of the Fourteenth Workshop on the Economics of Information Security (WEIS), Delft, Netherlands, June 2015."},{"key":"e_1_3_2_1_32_1","volume-title":"Proceedings of the 22nd Usenix Security Symposium","author":"Thomas K.","year":"2013","unstructured":"K. Thomas , D. McCoy , C. Grier , A. Kolcz , and V. Paxson . Trafficking Fraudulent Accounts: The Role of the Underground Market in Twitter Spam and Abuse . In Proceedings of the 22nd Usenix Security Symposium , 2013 . K. Thomas, D. McCoy, C. Grier, A. Kolcz, and V. Paxson. Trafficking Fraudulent Accounts: The Role of the Underground Market in Twitter Spam and Abuse. In Proceedings of the 22nd Usenix Security Symposium, 2013."},{"key":"e_1_3_2_1_33_1","unstructured":"D. Y. Wang M. Der M. Karami L. Saul D. McCoy S. Savage and G. M. Voelker. Search  D. Y. Wang M. Der M. Karami L. Saul D. McCoy S. Savage and G. M. Voelker. Search"},{"key":"e_1_3_2_1_34_1","doi-asserted-by":"publisher","DOI":"10.1145\/2663716.2663738"},{"key":"e_1_3_2_1_35_1","doi-asserted-by":"publisher","DOI":"10.1145\/2592791.2592794"},{"key":"e_1_3_2_1_36_1","doi-asserted-by":"publisher","DOI":"10.1145\/1879141.1879149"},{"key":"e_1_3_2_1_37_1","doi-asserted-by":"publisher","DOI":"10.1109\/TIFS.2011.2107320"}],"event":{"name":"WWW '16: 25th International World Wide Web Conference","sponsor":["IW3C2 International World Wide Web Conference Committee","SIGWEB ACM Special Interest Group on Hypertext, Hypermedia, and Web"],"location":"Montr\u00e9al Qu\u00e9bec Canada","acronym":"WWW '16"},"container-title":["Proceedings of the 25th International Conference on World Wide Web"],"original-title":[],"link":[{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/2872427.2883004","content-type":"unspecified","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/dl.acm.org\/doi\/pdf\/10.1145\/2872427.2883004","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,6,18]],"date-time":"2025-06-18T04:39:05Z","timestamp":1750221545000},"score":1,"resource":{"primary":{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/2872427.2883004"}},"subtitle":["Understanding and Undermining the Business of DDoS Services"],"short-title":[],"issued":{"date-parts":[[2016,4,11]]},"references-count":37,"alternative-id":["10.1145\/2872427.2883004","10.5555\/2872427"],"URL":"https:\/\/doi.org\/10.1145\/2872427.2883004","relation":{},"subject":[],"published":{"date-parts":[[2016,4,11]]},"assertion":[{"value":"2016-04-11","order":2,"name":"published","label":"Published","group":{"name":"publication_history","label":"Publication History"}}]}}