{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,3,10]],"date-time":"2026-03-10T22:53:05Z","timestamp":1773183185322,"version":"3.50.1"},"publisher-location":"New York, NY, USA","reference-count":34,"publisher":"ACM","license":[{"start":{"date-parts":[[2012,10,25]],"date-time":"2012-10-25T00:00:00Z","timestamp":1351123200000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/www.acm.org\/publications\/policies\/copyright_policy#Background"}],"content-domain":{"domain":["dl.acm.org"],"crossmark-restriction":true},"short-container-title":[],"published-print":{"date-parts":[[2012,10,25]]},"DOI":"10.1145\/2388576.2388580","type":"proceedings-article","created":{"date-parts":[[2012,10,26]],"date-time":"2012-10-26T18:34:06Z","timestamp":1351276446000},"page":"33-40","update-policy":"https:\/\/doi.org\/10.1145\/crossmark-policy","source":"Crossref","is-referenced-by-count":7,"title":["Botnets"],"prefix":"10.1145","author":[{"given":"Lu\u00eds","family":"Mendon\u00e7a","sequence":"first","affiliation":[{"name":"University of Minho, Braga, Portugal"}]},{"given":"Henrique","family":"Santos","sequence":"additional","affiliation":[{"name":"University of Minho, Braga, Portugal"}]}],"member":"320","published-online":{"date-parts":[[2012,10,25]]},"reference":[{"key":"e_1_3_2_1_1_1","doi-asserted-by":"publisher","DOI":"10.1109\/SAINT-W.2007.14"},{"key":"e_1_3_2_1_2_1","doi-asserted-by":"publisher","DOI":"10.1109\/CATCH.2009.40"},{"key":"e_1_3_2_1_3_1","volume-title":"Computer and Information Technology, 2007. CIT 2007. 7th IEEE International Conference on","author":"Choi H.","year":"2007"},{"key":"e_1_3_2_1_4_1","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-540-87403-4_14"},{"key":"e_1_3_2_1_5_1","doi-asserted-by":"publisher","DOI":"10.1109\/ACSAC.2007.44"},{"key":"e_1_3_2_1_6_1","doi-asserted-by":"publisher","DOI":"10.1109\/WKDD.2010.155"},{"key":"e_1_3_2_1_7_1","unstructured":"Falliere N. et al. 2011. W32. Stuxnet Dossier.  Falliere N. et al. 2011. W32. Stuxnet Dossier ."},{"key":"e_1_3_2_1_8_1","volume-title":"Proceedings of 16th USENIX Security Symposium on USENIX Security Symposium","author":"Gu G.","year":"2007"},{"key":"e_1_3_2_1_9_1","volume-title":"Proceedings of the 17th conference on Security symposium","author":"Gu G.","year":"2008"},{"key":"e_1_3_2_1_10_1","volume-title":"Proceedings of the 15th Annual Network and Distributed System Security Symposium (NDSS '08)","author":"Gu G.","year":"2008"},{"key":"e_1_3_2_1_11_1","doi-asserted-by":"publisher","DOI":"10.1145\/1128817.1128834"},{"key":"e_1_3_2_1_12_1","unstructured":"Ice IX The first crimeware based on the leaked zeus sources: 2011. http:\/\/www.securelist.com\/en\/blog\/208193087\/Ice_IX_the_first_crimeware_based_on_the_leaked_ZeuS_sources. Accessed: 2011-09-12.  Ice IX The first crimeware based on the leaked zeus sources: 2011. http:\/\/www.securelist.com\/en\/blog\/208193087\/Ice_IX_the_first_crimeware_based_on_the_leaked_ZeuS_sources. Accessed: 2011-09-12."},{"key":"e_1_3_2_1_13_1","doi-asserted-by":"publisher","DOI":"10.1155\/2009\/692654"},{"key":"e_1_3_2_1_14_1","volume-title":"Proceedings of the first conference on First Workshop on Hot Topics in Understanding Botnets","author":"Karasaridis A.","year":"2007"},{"key":"e_1_3_2_1_15_1","unstructured":"Kim I. et al. 2009. BotXrayer: Exposing Botnets by Visualizing DNS Traffic. (2009).  Kim I. et al. 2009. BotXrayer: Exposing Botnets by Visualizing DNS Traffic. (2009)."},{"key":"e_1_3_2_1_16_1","doi-asserted-by":"publisher","DOI":"10.1109\/ICDCS.2010.45"},{"key":"e_1_3_2_1_17_1","doi-asserted-by":"publisher","DOI":"10.1109\/CNSR.2009.21"},{"key":"e_1_3_2_1_18_1","doi-asserted-by":"publisher","DOI":"10.1109\/ISI.2008.4565058"},{"key":"e_1_3_2_1_19_1","volume-title":"Malicious and Unwanted Software (MALWARE), 2009 4th International Conference on","author":"Morales J. A.","year":"2010"},{"key":"e_1_3_2_1_20_1","unstructured":"Nfdump tools webpage: 2010. http:\/\/nfdump.sourceforge.net\/. Accessed: 2011-01-03.  Nfdump tools webpage: 2010. http:\/\/nfdump.sourceforge.net\/. Accessed: 2011-01-03."},{"key":"e_1_3_2_1_21_1","unstructured":"Nfsen Project 2011. Nfsen. Nfsen Project.  Nfsen Project 2011. Nfsen. Nfsen Project."},{"key":"e_1_3_2_1_22_1","unstructured":"Ntop tools webpage: 2011. http:\/\/www.ntop.org\/. Accessed: 2011-11-03.  Ntop tools webpage: 2011. http:\/\/www.ntop.org\/. Accessed: 2011-11-03."},{"key":"e_1_3_2_1_23_1","doi-asserted-by":"crossref","unstructured":"Prinzie A. and Van den Poel D. 2007. Random multiclass classification: Generalizing random forests to random mnl and random nb. Database and Expert Systems Applications (2007) 349--358.   Prinzie A. and Van den Poel D. 2007. Random multiclass classification: Generalizing random forests to random mnl and random nb. Database and Expert Systems Applications (2007) 349--358.","DOI":"10.1007\/978-3-540-74469-6_35"},{"key":"e_1_3_2_1_24_1","doi-asserted-by":"crossref","unstructured":"Simpson E. 1949. Measurement of diversity. Nature. (1949).  Simpson E. 1949. Measurement of diversity. Nature . (1949).","DOI":"10.1038\/163688a0"},{"key":"e_1_3_2_1_25_1","unstructured":"Spam IP List Stopping Spams Scams and Improving Internet Security Spam-IP.com: http:\/\/spam-ip.com\/. Accessed: 2012-01-16.  Spam IP List Stopping Spams Scams and Improving Internet Security Spam-IP.com: http:\/\/spam-ip.com\/. Accessed: 2012-01-16."},{"key":"e_1_3_2_1_26_1","doi-asserted-by":"crossref","unstructured":"Strayer W. T. et al. 2008. Botnet detection based on network behavior. Botnet Detection. (2008) 1--24.  Strayer W. T. et al. 2008. Botnet detection based on network behavior. Botnet Detection . (2008) 1--24.","DOI":"10.1007\/978-0-387-68768-1_1"},{"key":"e_1_3_2_1_27_1","unstructured":"Sucuri Security: http:\/\/sucuri.net\/. Accessed: 2012-01-15.  Sucuri Security: http:\/\/sucuri.net\/. Accessed: 2012-01-15."},{"key":"e_1_3_2_1_28_1","unstructured":"VMWare Virtualization Software: 2011. http:\/\/www.vmware.com\/. Accessed: 2011-11-15.  VMWare Virtualization Software: 2011. http:\/\/www.vmware.com\/. Accessed: 2011-11-15."},{"key":"e_1_3_2_1_29_1","doi-asserted-by":"publisher","DOI":"10.1109\/ccnc08.2007.112"},{"key":"e_1_3_2_1_30_1","doi-asserted-by":"publisher","DOI":"10.1109\/ICDCS.2010.76"},{"key":"e_1_3_2_1_31_1","doi-asserted-by":"publisher","DOI":"10.5555\/1444455.1446211"},{"key":"e_1_3_2_1_32_1","unstructured":"abuse.ch - The Swiss Security Blog: http:\/\/www.abuse.ch\/. Accessed: 2012-01-16.  abuse.ch - The Swiss Security Blog: http:\/\/www.abuse.ch\/. Accessed: 2012-01-16."},{"key":"e_1_3_2_1_33_1","unstructured":"dshield Home | DShield; Cooperative Network Security Community - Internet Security: http:\/\/www.dshield.org\/. Accessed: 2012-01-16.  dshield Home | DShield; Cooperative Network Security Community - Internet Security: http:\/\/www.dshield.org\/. Accessed: 2012-01-16."},{"key":"e_1_3_2_1_34_1","unstructured":"malc0de.com: http:\/\/malc0de.com\/dashboard\/. Accessed: 2012-01-16.  malc0de.com: http:\/\/malc0de.com\/dashboard\/. Accessed: 2012-01-16."}],"event":{"name":"SIN '12: 5th International Conference of Security of Information and Networks","location":"Jaipur India","acronym":"SIN '12","sponsor":["SIGSAC ACM Special Interest Group on Security, Audit, and Control"]},"container-title":["Proceedings of the Fifth International Conference on Security of Information and Networks"],"original-title":[],"link":[{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/2388576.2388580","content-type":"unspecified","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/dl.acm.org\/doi\/pdf\/10.1145\/2388576.2388580","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,6,18]],"date-time":"2025-06-18T09:21:13Z","timestamp":1750238473000},"score":1,"resource":{"primary":{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/2388576.2388580"}},"subtitle":["a heuristic-based detection framework"],"short-title":[],"issued":{"date-parts":[[2012,10,25]]},"references-count":34,"alternative-id":["10.1145\/2388576.2388580","10.1145\/2388576"],"URL":"https:\/\/doi.org\/10.1145\/2388576.2388580","relation":{},"subject":[],"published":{"date-parts":[[2012,10,25]]},"assertion":[{"value":"2012-10-25","order":2,"name":"published","label":"Published","group":{"name":"publication_history","label":"Publication History"}}]}}