- Issues and Etiquette Concerning Use of Shared Measurement Data
- The Use of Endtoend Multicast Measurements for Characterizing Internal Network Behavior
- 1 day of "crud" seen at ICSI (155K times) fragment-with-DFDNS-label-forward-
- Rethinking Hardware Support for Network Analysis and Intrusion Prevention
- Using Strongly Typed Networking to Architect for Tussle Chitra Muthukrishnan
- "Unbroken Chain" Vern Paxson
- Detecting and Analyzing Automated Activity on Twitter Chao Michael Zhang1
- The Stationarity of Internet Path Properties: Routing, Loss, and Throughput
- Empirically-Derived Analytic Models of Wide-Area TCP Connections
- A Longitudinal View of HTTP Traffic Tom Callahan
- Enhancing the Accuracy of Network-based Intrusion Detection with Host-based Context
- Testing Intrusion Detection Systems: A Critique of the 1998 and 1999 DARPA
- Enriching Network Security Analysis with Time Travel Gregor Maier
- Sample Snort Signature alert tcp $EXTERNAL_NET any -> $HOME_NET 139
- Countering DDoS Without Changing The Internet
- Automating Analysis of Large-Scale Botnet Probing Events Zhichun Li, Anup Goyal and Yan Chen
- Review and Analysis of Synthetic Diversity for Breaking Monocultures
- This is page 1 Printer: Opaque this
- A Brief History of Scanning Mark Allman
- Stronger Password Authentication Using Browser Extensions --B. Ross, C. Jackson, N. Miyake, D. Boneh, and J.C. Mitchell, Stanford
- Measuring and Detecting Fast-Flux
- Code Red 2 kills off Code Red 1
- The Strengths of Weaker Identities: Opportunistic Personas Mark Allman, Christian Kreibich, Vern Paxson, Robin Sommer, Nicholas Weaver
- USENIX Association Proceedings of the
- A Study of Mass-mailing Worms Cynthia Wong, Stan Bielski, Jonathan M. McCune, Chenxi Wang
- Enabling an Energy-Efficient Future Internet Through Selectively Connected End Systems
- I N S T I T U T F U R I N F O R M A T I K Exploiting Independent State For Network
- Experiences with NIMI Vern Paxson, Andrew Adams and Matt Mathis
- CONCURRENCY AND COMPUTATION: PRACTICE AND EXPERIENCE Concurrency Computat.: Pract. Exper. 2009; 21:12551279
- Worms vs. Perimeters: The Case for Hard-LANs
- WORM vs. WORM: Preliminary Study of an Active Counter-Attack Mechanism
- Design and Evaluation of a Real-Time URL Spam Filtering Service Kurt Thomas*
- Active Mapping: Resisting NIDS Evasion Without Altering Traffic Umesh Shankar
- IEEE/ACM TRANSACTIONS ON NETWORKING, VOL. 14, NO. 6, DECEMBER 2006 1 Observed Structure of Addresses in IP Traffic
- Preventing Large-Scale Data Leaks Bryan Parno, Jonathan McCune,
- IP Traceback Mobin Javed
- What's Clicking What? Techniques and Innovations of Today's Clickbots
- On Estimating EndtoEnd Network Path Properties \Lambda Mark Allman
- Conducting Cybersecurity Research Legally and Ethically Aaron J. Burstein
- The Devil and Packet Trace Anonymization Ruoming Pang
- Bro: A System for Detecting Network Intruders in Real-Time Vern Paxson
- Operational Experiences with High-Volume Network Intrusion Detection
- Securing Mediated Trace Access Using Black-box Permutation Analysis
- On the Adaptive Real-Time Detection of Fast-Propagating Network Worms
- Enhancing Byte-Level Network Intrusion Detection Signatures with Context
- Using Honeynets for Internet Situational Awareness Vinod Yegneswaran
- An Inquiry into the Nature and Causes of the Wealth of Internet Miscreants
- An Analysis of Using Reflectors for Distributed DenialofService Attacks
- Exploiting Underlying Structure for Detailed Reconstruction of an Internet-scale Event
- Wide-Area Traffic: The Failure of Poisson Modeling
- A Preliminary Analysis of TCP Performance in an Enterprise Network Boris Nechaev
- Principles for Developing Comprehensive Network Visibility Mark Allman, Christian Kreibich, Vern Paxson, Robin Sommer, Nicholas Weaver
- An Assessment of Overt Malicious Activity Manifest in Residential Networks
- Implications of Netalyzr's DNS Measurements Nicholas Weaver
- Outside the Closed World: On Using Machine Learning For Network Intrusion Detection
- On Dominant Characteristics of Residential Broadband Internet Traffic
- On Calibrating Enterprise Switch Measurements Boris Nechaev
- Detecting Forged TCP Reset Packets Nicholas Weaver
- Predicting the Resource Consumption of Network Intrusion Detection Systems
- A Tool for Offline and Live Testing of Evasion Resilience in Network Intrusion Detection Systems
- Efficient and Robust TCP Stream Normalization Mythili Vutukuru and Hari Balakrishnan
- Shunting: A Hardware/Software Architecture for Flexible, High-Performance Network Intrusion Prevention
- The Shunt: An FPGA-Based Accelerator for Network Intrusion Prevention
- Fighting Coordinated Attackers with Cross-Organizational Information Sharing
- Network System Challenges in Selective Sharing and Verification for Personal, Social, and Urban-Scale Sensing
- binpac: A yacc for Writing Application Protocol Parsers Ruoming Pang
- Dynamic Application-Layer Protocol Analysis for Network Intrusion Detection
- Enhancing Network Intrusion Detection With Integrated Sampling and Filtering
- Exploiting Independent State For Network Intrusion Detection Robin Sommer
- Building a Time Machine for Efficient Recording and Retrieval of High-Volume Network Traffic
- The Network Oracle Joseph M. Hellerstein
- A High-level Programming Environment for Packet Trace Anonymization and Transformation
- A Taxonomy of Computer Worms UC Berkeley
- PUBLISHED BY THE IEEE COMPUTER SOCIETY I 1540-7993/03/$17.00 2003 IEEE I IEEE SECURITY & PRIVACY 33 Slammer Worm Dissection
- Large Scale Malicious Code: A Research Agenda Nicholas Weaver Vern Paxson Stuart Staniford Robert Cunningham
- Estimating Router ICMP Generation Delays Ramesh Govindan and Vern Paxson
- Network Intrusion Detection: Evasion, Traffic Normalization, and End-to-End Protocol Semantics
- An Analysis of Using Reflectors for Distributed Denial-of-Service Attacks
- A Program for Testing IEEE DecimalBinary Conversion
- A Survey of Support For Implementing Debuggers Vern Paxson
- TCP Header Source port Destination port
- DDoS DefenseDDoS Defense Edward Xuejun WuEdward Xuejun Wu
- Key Modules Icarus: A Prototype Honeyfarm System
- Example: LBL Forensics i dont think this looks good
- Authors: Chen S., Wang R., Wang X., Zhang K. Presenter: Brad Miller
- Blocking Resistance in Tor Presented by Justin Samuel
- On Attack Causality in Internet-Connected Cellular
- Computer Fraud and 18 U.S.C 1030
- Not-a-Bot: Improving Service Availability in the Face of
- ACT: Attachment Chain Tracing Scheme for Email Virus Detection and Control
- DDoS for Zombies John "JI" Ioannidis
- End-Point Counter-Worm Mechanism Using Automated Software Patching
- David Moore September 23rd, 2003
- Preliminary Results Using Scale-Down to Explore Worm Dynamics
- A Worst-Case Worm Nicholas Weaver Vern Paxson
- Semi-Automated Discovery of Application Session Structure
- Link-Cutting Attacks Link-Cutting Attacks
- sEPTEMBER 2009 | VoL. 52 | no. 9 | commuNicaTioNS of The acm 99 Spamalytics: An Empirical
- @spam: The Underground on 140 Characters or Less Chris Grier
- Fast Portscan Detection Using Sequential Hypothesis Testing Jaeyeon Jung, Vern Paxson, Arthur W. Berger, and Hari Balakrishnan
- A Reactive Measurement Framework Mark Allman and Vern Paxson
- On the Constancy of Internet Path Properties Yin Zhang, Nick Duffield, Vern Paxson, Scott Shenker
- I N S T I T U T F U R I N F O R M A T I K
- Netalyzr: Illuminating The Edge Network Christian Kreibich
- A Tool for Offline and Live Testing of Evasion Resilience in Network Intrusion Detection Systems
- pktd: A Packet Capture and Injection Daemon Jose Maria Gonzalez
- An Architecture for Exploiting Multi-Core Processors to Parallelize Network Intrusion Prevention
- Robust TCP Stream Reassembly In the Presence of Adversaries Sarang Dharmapurikar Vern Paxson
- Detecting Backdoors Yin Zhang and Vern Paxson \Lambda
- SIFF: A Stateless Internet Flow Filter to Mitigate DDoS Flooding Attacks
- DNS-based Detection of Scanning Worms in an Enterprise Network
- Enhancing ByteLevel Network Intrusion Detection Signatures with Context
- If we control ... we can monitor &
- Detecting Stepping Stones Yin Zhang and Vern Paxson \Lambda
- Controlling High Bandwidth Aggregates in the Network (Extended Version)
- #!/usr/bin/perl while (<>) {
- A Behavioral Approach to Worm Detection Daniel R. Ellis, John G. Aiken, Kira S. Attwood, Scott D.Tenaglia
- Experiences from Netalyzr with Engaging Users in End-System Measurement
- GQ: Practical Containment for Measuring Modern Malware Systems Christian Kreibich
- Suspended Accounts in Retrospect: An Analysis of Twitter Spam
- Example: LBL Forensics i dont think this looks good
- SIFF: A Stateless Internet Flow Filter to Mitigate DDoS Flooding Attacks
- Code Red 2 kills off Code Red 1
- USENIX Association Proceedings of the
- Sample Snort Signature alert tcp $EXTERNAL_NET any ->
- Trust-based Anonymous Communication Aurojit Panda
- 102 chars. 125 chars. 107 chars. 136 chars. 101 chars. 102 chars.
- The BIZ Top-Level Domain: Ten Years Later Tristan Halvorson1
- Practical Network Support for IP Traceback Stefan Savage, David Wetherall, Anna Karlin and Tom Anderson
- 1 day of "crud" seen at ICSI (155K times) fragment-with-DFDNS-label-forward-
- 2009 -2010 2011 -2012
- Testing Intrusion Detection Systems: A Critique of the 1998 and 1999 DARPA
- A Briefing on Pushback Ratul Mahajan, Steven M. Bellovin, Sally Floyd, John Ioannidis, Vern Paxson, and ScoC Shenker. 2002.
- Very Fast Containment of Scanning Worms
- A Dos-limi*ng Network Architecture
- Design Space and Analysis of Worm Defense Strategies
- Inferring Internet Denial-of-Service Activity David Moore
- Conducting Cybersecurity Research Legally and Ethically Aaron J. Burstein
- Stuxnet Under the Microscope Presented by: Scott Marshall
