{"id":"https://openalex.org/W4402811575","doi":"https://doi.org/10.1109/csr61664.2024.10679505","title":"ReBotDetector: A Detection Model with LSTM Feature Extractor for Session-Replay Web Bot Attacks","display_name":"ReBotDetector: A Detection Model with LSTM Feature Extractor for Session-Replay Web Bot Attacks","publication_year":2024,"publication_date":"2024-09-02","ids":{"openalex":"https://openalex.org/W4402811575","doi":"https://doi.org/10.1109/csr61664.2024.10679505"},"language":"en","primary_location":{"id":"doi:10.1109/csr61664.2024.10679505","is_oa":false,"landing_page_url":"https://doi.org/10.1109/csr61664.2024.10679505","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"2024 IEEE International Conference on Cyber Security and Resilience (CSR)","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5039131377","display_name":"Shadi Sadeghpour","orcid":"https://orcid.org/0000-0003-0045-657X"},"institutions":[{"id":"https://openalex.org/I91036609","display_name":"Citadel","ror":"https://ror.org/01vwr6t80","country_code":"US","type":"education","lineage":["https://openalex.org/I91036609"]}],"countries":["US"],"is_corresponding":true,"raw_author_name":"Shadi Sadeghpour","raw_affiliation_strings":["The Citadel,Department of Cyber &#x0026; Computer Science,Charleston,USA"],"affiliations":[{"raw_affiliation_string":"The Citadel,Department of Cyber &#x0026; Computer Science,Charleston,USA","institution_ids":["https://openalex.org/I91036609"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5079596413","display_name":"Natalija Vlajic","orcid":"https://orcid.org/0000-0001-9921-0128"},"institutions":[{"id":"https://openalex.org/I192455969","display_name":"York University","ror":"https://ror.org/05fq50484","country_code":"CA","type":"education","lineage":["https://openalex.org/I192455969"]}],"countries":["CA"],"is_corresponding":false,"raw_author_name":"Natalija Vlajic","raw_affiliation_strings":["York University,Electrical Engineering &#x0026; Computer Science,Toronto,Canada"],"affiliations":[{"raw_affiliation_string":"York University,Electrical Engineering &#x0026; Computer Science,Toronto,Canada","institution_ids":["https://openalex.org/I192455969"]}]}],"institutions":[],"countries_distinct_count":2,"institutions_distinct_count":2,"corresponding_author_ids":["https://openalex.org/A5039131377"],"corresponding_institution_ids":["https://openalex.org/I91036609"],"apc_list":null,"apc_paid":null,"fwci":0.3663,"has_fulltext":false,"cited_by_count":1,"citation_normalized_percentile":{"value":0.61802405,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":{"min":91,"max":95},"biblio":{"volume":null,"issue":null,"first_page":"16","last_page":"21"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T10400","display_name":"Network Security and Intrusion Detection","score":0.9991999864578247,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T10400","display_name":"Network Security and Intrusion Detection","score":0.9991999864578247,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":0.998199999332428,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11644","display_name":"Spam and Phishing Detection","score":0.9919999837875366,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/session","display_name":"Session (web analytics)","score":0.8815342783927917},{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.8213202953338623},{"id":"https://openalex.org/keywords/extractor","display_name":"Extractor","score":0.8061960339546204},{"id":"https://openalex.org/keywords/feature","display_name":"Feature (linguistics)","score":0.49794626235961914},{"id":"https://openalex.org/keywords/feature-extraction","display_name":"Feature extraction","score":0.49161916971206665},{"id":"https://openalex.org/keywords/replay-attack","display_name":"Replay attack","score":0.42227405309677124},{"id":"https://openalex.org/keywords/artificial-intelligence","display_name":"Artificial intelligence","score":0.35505762696266174},{"id":"https://openalex.org/keywords/world-wide-web","display_name":"World Wide Web","score":0.3350091576576233},{"id":"https://openalex.org/keywords/pattern-recognition","display_name":"Pattern recognition (psychology)","score":0.322538286447525},{"id":"https://openalex.org/keywords/speech-recognition","display_name":"Speech recognition","score":0.3215361535549164},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.2161436676979065},{"id":"https://openalex.org/keywords/engineering","display_name":"Engineering","score":0.07885798811912537},{"id":"https://openalex.org/keywords/authentication","display_name":"Authentication (law)","score":0.0528712272644043}],"concepts":[{"id":"https://openalex.org/C2779182362","wikidata":"https://www.wikidata.org/wiki/Q17126187","display_name":"Session (web analytics)","level":2,"score":0.8815342783927917},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.8213202953338623},{"id":"https://openalex.org/C117978034","wikidata":"https://www.wikidata.org/wiki/Q5422192","display_name":"Extractor","level":2,"score":0.8061960339546204},{"id":"https://openalex.org/C2776401178","wikidata":"https://www.wikidata.org/wiki/Q12050496","display_name":"Feature (linguistics)","level":2,"score":0.49794626235961914},{"id":"https://openalex.org/C52622490","wikidata":"https://www.wikidata.org/wiki/Q1026626","display_name":"Feature extraction","level":2,"score":0.49161916971206665},{"id":"https://openalex.org/C11560541","wikidata":"https://www.wikidata.org/wiki/Q1756025","display_name":"Replay attack","level":3,"score":0.42227405309677124},{"id":"https://openalex.org/C154945302","wikidata":"https://www.wikidata.org/wiki/Q11660","display_name":"Artificial intelligence","level":1,"score":0.35505762696266174},{"id":"https://openalex.org/C136764020","wikidata":"https://www.wikidata.org/wiki/Q466","display_name":"World Wide Web","level":1,"score":0.3350091576576233},{"id":"https://openalex.org/C153180895","wikidata":"https://www.wikidata.org/wiki/Q7148389","display_name":"Pattern recognition (psychology)","level":2,"score":0.322538286447525},{"id":"https://openalex.org/C28490314","wikidata":"https://www.wikidata.org/wiki/Q189436","display_name":"Speech recognition","level":1,"score":0.3215361535549164},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.2161436676979065},{"id":"https://openalex.org/C127413603","wikidata":"https://www.wikidata.org/wiki/Q11023","display_name":"Engineering","level":0,"score":0.07885798811912537},{"id":"https://openalex.org/C148417208","wikidata":"https://www.wikidata.org/wiki/Q4825882","display_name":"Authentication (law)","level":2,"score":0.0528712272644043},{"id":"https://openalex.org/C21880701","wikidata":"https://www.wikidata.org/wiki/Q2144042","display_name":"Process engineering","level":1,"score":0.0},{"id":"https://openalex.org/C41895202","wikidata":"https://www.wikidata.org/wiki/Q8162","display_name":"Linguistics","level":1,"score":0.0},{"id":"https://openalex.org/C138885662","wikidata":"https://www.wikidata.org/wiki/Q5891","display_name":"Philosophy","level":0,"score":0.0}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1109/csr61664.2024.10679505","is_oa":false,"landing_page_url":"https://doi.org/10.1109/csr61664.2024.10679505","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"2024 IEEE International Conference on Cyber Security and Resilience (CSR)","raw_type":"proceedings-article"}],"best_oa_location":null,"sustainable_development_goals":[],"awards":[],"funders":[],"has_content":{"pdf":false,"grobid_xml":false},"content_urls":null,"referenced_works_count":8,"referenced_works":["https://openalex.org/W3013798357","https://openalex.org/W4293519301","https://openalex.org/W4308411481","https://openalex.org/W4322770091","https://openalex.org/W4327779023","https://openalex.org/W4376619776","https://openalex.org/W6784270692","https://openalex.org/W6888449869"],"related_works":["https://openalex.org/W4230197055","https://openalex.org/W4296749040","https://openalex.org/W621808327","https://openalex.org/W644007644","https://openalex.org/W2497198634","https://openalex.org/W3012257603","https://openalex.org/W1586784764","https://openalex.org/W4292264782","https://openalex.org/W1559289099","https://openalex.org/W3016450995"],"abstract_inverted_index":{"In":[0,53],"the":[1,54,70],"ever-evolving":[2],"digital":[3],"landscape,":[4],"cyberattacks":[5],"are":[6],"becoming":[7],"increasingly":[8],"intricate":[9],"and":[10,33],"adept":[11],"at":[12,132],"bypassing":[13],"detection.":[14],"Session-replay":[15],"web":[16],"bot":[17,112,164],"attacks,":[18],"where":[19],"attackers":[20],"leverage":[21],"pre-recorded":[22],"human":[23,97,122,142],"mouse":[24],"movements":[25],"to":[26,48,68,84,118],"mimic":[27],"user":[28],"behavior":[29],"on":[30],"targeted":[31],"websites":[32],"applications,":[34],"exemplify":[35],"this":[36],"growing":[37],"threat.":[38],"This":[39],"paper":[40],"proposes":[41],"ReBotDetector,":[42],"a":[43,62,88,159],"specialized":[44],"ML-based":[45],"system":[46],"designed":[47,117],"identify":[49],"malicious":[50,134],"replay":[51,111,135,151],"sessions.":[52,98,123,143],"first":[55],"stage":[56],"of":[57,91,101],"its":[58],"operation,":[59],"ReBotDetector":[60,102,128],"utilizes":[61],"Long":[63],"Short-Term":[64],"Memory":[65],"(LSTM)":[66],"network":[67],"extract":[69],"most":[71],"critical":[72],"features":[73],"from":[74],"human-generated":[75],"dynamic":[76],"mouse-movement":[77],"dataset.":[78],"Subsequently,":[79],"it":[80],"employs":[81],"Cosine":[82],"similarity":[83,92],"pinpoint":[85],"sessions":[86,136,152],"exhibiting":[87],"high":[89,145],"degree":[90],"with":[93],"previously":[94],"observed":[95],"legitimate":[96],"The":[99,144],"effectiveness":[100],"is":[103,116,129],"evaluated":[104],"through":[105],"experiments":[106],"utilizing":[107],"our":[108,154],"proprietary":[109],"state-of-the-art":[110],"software":[113],"(ReBot),":[114],"which":[115],"faithfully":[119],"replicate":[120],"authentic":[121],"Experimental":[124],"results":[125],"demonstrate":[126],"that":[127],"highly":[130],"effective":[131],"identifying":[133],"generated":[137],"by":[138],"ReBot":[139],"against":[140,162],"genuine":[141],"accuracy":[146],"achieved":[147],"in":[148,166],"detecting":[149],"these":[150],"underscores":[153],"proposed":[155],"model's":[156],"potential":[157],"as":[158],"robust":[160],"defense":[161],"session-replay":[163],"attacks":[165],"real-world":[167],"systems.":[168]},"counts_by_year":[{"year":2025,"cited_by_count":1}],"updated_date":"2025-12-27T23:08:20.325037","created_date":"2025-10-10T00:00:00"}