{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,6,10]],"date-time":"2026-06-10T14:28:32Z","timestamp":1781101712015,"version":"3.54.1"},"reference-count":17,"publisher":"IGI Global Scientific Publishing","issue":"2","content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2011,4,1]]},"abstract":"<p>A key requirement for experimental analysis in the areas of network intrusion and computer forensics is the availability of suitable datasets. However, the inherent security and privacy issues surrounding these disciplines have resulted in a lack of available \u201ctest-bed\u201d datasets for testing and evaluation purposes. Typically, the datasets required in these cases are from system log files, containing traces of computer misuse. Therefore, there is obvious potential for the use of synthetically generated log files that can accurately reproduce these traces or patterns of misuse. This paper discusses the development, testing, and evaluation of a dataset generator tool, designed to produce such datasets, particularly those containing patterns of common computer attacks.<\/p>","DOI":"10.4018\/jaci.2011040105","type":"journal-article","created":{"date-parts":[[2011,10,20]],"date-time":"2011-10-20T10:36:48Z","timestamp":1319107008000},"page":"64-76","source":"Crossref","is-referenced-by-count":9,"title":["Development and Evaluation of a Dataset Generator Tool for Generating Synthetic Log Files Containing Computer Attack Signatures"],"prefix":"10.4018","volume":"3","author":[{"given":"Stephen","family":"O\u2019Shaughnessy","sequence":"first","affiliation":[{"name":"Institute of Technology Blanchardstown, Ireland"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"given":"Geraldine","family":"Gray","sequence":"additional","affiliation":[{"name":"Institute of Technology Blanchardstown, Ireland"}],"role":[{"vocabulary":"crossref","role":"author"}]}],"member":"2432","reference":[{"key":"jaci.2011040105-0","doi-asserted-by":"crossref","unstructured":"Abraham, T., & de Vel, O. (2002). Investigative profiling with computer forensic log data and association rules. In Proceedings of the IEEE International Conference on Data Mining (pp.11-18).","DOI":"10.1109\/ICDM.2002.1183880"},{"key":"jaci.2011040105-1","unstructured":"Asgaut Eng. (1996). Passive and active attacks. Retrieved from http:\/\/www.pvv.org\/~asgaut\/crypto\/thesis\/node10.html"},{"key":"jaci.2011040105-2","unstructured":"Brenton, C., Bird, T., & Ranum, M. J. (2006). Top 5 essential log reports. Retrieved from http:\/\/www.sans.org\/security-resources\/top5_logreports.pdf"},{"key":"jaci.2011040105-3","unstructured":"Grenier, C. (2004). HoneyNet scan of the month 31: Solution. Retrieved from http:\/\/old.honeynet.org\/scans\/scan31\/sub\/grenier\/attacks.html"},{"key":"jaci.2011040105-4","unstructured":"HoneyNet. (2004). Scan 31. Retrieved from http:\/\/old.honeynet.org\/scans\/scan31\/"},{"key":"jaci.2011040105-5","unstructured":"Houle, K. J., & Weaver, G. M. (2001). Trends in denial of service attack technology. Pittsburgh, PA: CERT\u00ae Coordination Centre."},{"key":"jaci.2011040105-6","unstructured":"Korba, J. (2000). Windows NT attacks for the evaluation of intrusion detection systems. Unpublished master\u2019s thesis, Massachusetts Institute of Technology, Cambridge, MA."},{"key":"jaci.2011040105-7","author":"R.Meyer","year":"2008","journal-title":"Detecting attacks on web applications from log files"},{"key":"jaci.2011040105-8","unstructured":"O'Shaughnessy, S., & Gray, G. (2010). Development of a dataset generator for testing and evaluating knowledge discovery techniques and forensics or network security analysis tools. In Proceedings of the 10th International Conference on Information Technology and Telecommunication."},{"key":"jaci.2011040105-9","unstructured":"RapidMiner. (2010). RapidMiner homepage. Retrieved from http:\/\/rapid-i.com\/content\/view\/181\/190\/"},{"key":"jaci.2011040105-10","unstructured":"Stelmack, T. (2004). HoneyNet scan of the month 31: Solution. Retrieved from http:\/\/old.honeynet.org\/scans\/scan31\/sub\/tina_stelmack\/tina_stelmack.pdf"},{"key":"jaci.2011040105-11","author":"M.Stingley","year":"2009","journal-title":"Check point firewall log analysis in-depth"},{"key":"jaci.2011040105-12","unstructured":"Tech Target. (2007). Honeypot definition. Retrieved from http:\/\/searchsecurity.techtarget.com\/sDefinition\/0,sid14_gci551721,00.html"},{"key":"jaci.2011040105-13","unstructured":"Tenable Network Security. (2010). Tenable nesssus. Retrieved from http:\/\/www.nessus.org\/nessus\/"},{"key":"jaci.2011040105-14","doi-asserted-by":"crossref","unstructured":"Vaarandi, R. (2004). A breadth-first algorithm for mining frequent patterns from event logs. In Proceedings of the IFIP International Conference on Intelligence in Communication Systems (pp. 293-308).","DOI":"10.1007\/978-3-540-30179-0_27"},{"key":"jaci.2011040105-15","unstructured":"Wenke, L., & Stolfo, S. J. (1998). Data mining approaches for intrusion detection. In Proceedings of the 7th Conference on USENIX Security (Vol. 7)."},{"key":"jaci.2011040105-16","doi-asserted-by":"publisher","DOI":"10.1111\/j.1540-5915.2001.tb00975.x"}],"container-title":["International Journal of Ambient Computing and Intelligence"],"original-title":[],"language":"ng","link":[{"URL":"https:\/\/www.igi-global.com\/viewtitle.aspx?TitleId=54448","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2022,6,1]],"date-time":"2022-06-01T23:12:16Z","timestamp":1654125136000},"score":1,"resource":{"primary":{"URL":"https:\/\/services.igi-global.com\/resolvedoi\/resolve.aspx?doi=10.4018\/jaci.2011040105"}},"subtitle":[""],"short-title":[],"issued":{"date-parts":[[2011,4,1]]},"references-count":17,"journal-issue":{"issue":"2","published-print":{"date-parts":[[2011,4]]}},"URL":"https:\/\/doi.org\/10.4018\/jaci.2011040105","relation":{},"ISSN":["1941-6237","1941-6245"],"issn-type":[{"value":"1941-6237","type":"print"},{"value":"1941-6245","type":"electronic"}],"subject":[],"published":{"date-parts":[[2011,4,1]]}}}