{"id":"https://openalex.org/W2103487196","doi":"https://doi.org/10.1109/eurocon.2013.6624967","title":"Analysis and visualization of SSH attacks using honeypots","display_name":"Analysis and visualization of SSH attacks using honeypots","publication_year":2013,"publication_date":"2013-07-01","ids":{"openalex":"https://openalex.org/W2103487196","doi":"https://doi.org/10.1109/eurocon.2013.6624967","mag":"2103487196"},"language":"en","primary_location":{"id":"doi:10.1109/eurocon.2013.6624967","is_oa":false,"landing_page_url":"https://doi.org/10.1109/eurocon.2013.6624967","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Eurocon 2013","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5021316009","display_name":"Ioannis Koniaris","orcid":null},"institutions":[{"id":"https://openalex.org/I21370196","display_name":"Aristotle University of Thessaloniki","ror":"https://ror.org/02j61yw88","country_code":"GR","type":"education","lineage":["https://openalex.org/I21370196"]}],"countries":["GR"],"is_corresponding":true,"raw_author_name":"Ioannis Koniaris","raw_affiliation_strings":["Department of Informatics, Aristotle University of Thessaloniki, Thessaloniki, Greece","Dept. of Inf., Aristotle Univ. of Thessaloniki, Thessaloniki, Greece#TAB#"],"affiliations":[{"raw_affiliation_string":"Department of Informatics, Aristotle University of Thessaloniki, Thessaloniki, Greece","institution_ids":["https://openalex.org/I21370196"]},{"raw_affiliation_string":"Dept. of Inf., Aristotle Univ. of Thessaloniki, Thessaloniki, Greece#TAB#","institution_ids":["https://openalex.org/I21370196"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5031247331","display_name":"G.I. Papadimitriou","orcid":"https://orcid.org/0000-0001-9529-9380"},"institutions":[{"id":"https://openalex.org/I21370196","display_name":"Aristotle University of Thessaloniki","ror":"https://ror.org/02j61yw88","country_code":"GR","type":"education","lineage":["https://openalex.org/I21370196"]}],"countries":["GR"],"is_corresponding":false,"raw_author_name":"Georgios Papadimitriou","raw_affiliation_strings":["Department of Informatics, Aristotle University of Thessaloniki, Thessaloniki, Greece","Dept. of Inf., Aristotle Univ. of Thessaloniki, Thessaloniki, Greece#TAB#"],"affiliations":[{"raw_affiliation_string":"Department of Informatics, Aristotle University of Thessaloniki, Thessaloniki, Greece","institution_ids":["https://openalex.org/I21370196"]},{"raw_affiliation_string":"Dept. of Inf., Aristotle Univ. of Thessaloniki, Thessaloniki, Greece#TAB#","institution_ids":["https://openalex.org/I21370196"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5022917090","display_name":"Petros Nicopolitidis","orcid":"https://orcid.org/0000-0002-5059-3145"},"institutions":[{"id":"https://openalex.org/I21370196","display_name":"Aristotle University of Thessaloniki","ror":"https://ror.org/02j61yw88","country_code":"GR","type":"education","lineage":["https://openalex.org/I21370196"]}],"countries":["GR"],"is_corresponding":false,"raw_author_name":"Petros Nicopolitidis","raw_affiliation_strings":["Department of Informatics, Aristotle University of Thessaloniki, Thessaloniki, Greece","Dept. of Inf., Aristotle Univ. of Thessaloniki, Thessaloniki, Greece#TAB#"],"affiliations":[{"raw_affiliation_string":"Department of Informatics, Aristotle University of Thessaloniki, Thessaloniki, Greece","institution_ids":["https://openalex.org/I21370196"]},{"raw_affiliation_string":"Dept. of Inf., Aristotle Univ. of Thessaloniki, Thessaloniki, Greece#TAB#","institution_ids":["https://openalex.org/I21370196"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":3,"corresponding_author_ids":["https://openalex.org/A5021316009"],"corresponding_institution_ids":["https://openalex.org/I21370196"],"apc_list":null,"apc_paid":null,"fwci":3.6244,"has_fulltext":false,"cited_by_count":47,"citation_normalized_percentile":{"value":0.93726473,"is_in_top_1_percent":false,"is_in_top_10_percent":true},"cited_by_percentile_year":{"min":89,"max":99},"biblio":{"volume":null,"issue":null,"first_page":"65","last_page":"72"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T10400","display_name":"Network Security and Intrusion Detection","score":0.9995999932289124,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T10400","display_name":"Network Security and Intrusion Detection","score":0.9995999932289124,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":0.9986000061035156,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11598","display_name":"Internet Traffic Analysis and Secure E-voting","score":0.996999979019165,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/honeypot","display_name":"Honeypot","score":0.9901187419891357},{"id":"https://openalex.org/keywords/server","display_name":"Server","score":0.7397434711456299},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.7324733138084412},{"id":"https://openalex.org/keywords/hacker","display_name":"Hacker","score":0.6977788805961609},{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.6975497603416443},{"id":"https://openalex.org/keywords/visualization","display_name":"Visualization","score":0.5735934972763062},{"id":"https://openalex.org/keywords/network-security","display_name":"Network security","score":0.5023646354675293},{"id":"https://openalex.org/keywords/web-server","display_name":"Web server","score":0.48042798042297363},{"id":"https://openalex.org/keywords/attack-patterns","display_name":"Attack patterns","score":0.4581950604915619},{"id":"https://openalex.org/keywords/software","display_name":"Software","score":0.45470529794692993},{"id":"https://openalex.org/keywords/the-internet","display_name":"The Internet","score":0.33595800399780273},{"id":"https://openalex.org/keywords/world-wide-web","display_name":"World Wide Web","score":0.3292285203933716},{"id":"https://openalex.org/keywords/intrusion-detection-system","display_name":"Intrusion detection system","score":0.28074848651885986},{"id":"https://openalex.org/keywords/operating-system","display_name":"Operating system","score":0.19517070055007935}],"concepts":[{"id":"https://openalex.org/C191267431","wikidata":"https://www.wikidata.org/wiki/Q911932","display_name":"Honeypot","level":2,"score":0.9901187419891357},{"id":"https://openalex.org/C93996380","wikidata":"https://www.wikidata.org/wiki/Q44127","display_name":"Server","level":2,"score":0.7397434711456299},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.7324733138084412},{"id":"https://openalex.org/C86844869","wikidata":"https://www.wikidata.org/wiki/Q2798820","display_name":"Hacker","level":2,"score":0.6977788805961609},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.6975497603416443},{"id":"https://openalex.org/C36464697","wikidata":"https://www.wikidata.org/wiki/Q451553","display_name":"Visualization","level":2,"score":0.5735934972763062},{"id":"https://openalex.org/C182590292","wikidata":"https://www.wikidata.org/wiki/Q989632","display_name":"Network security","level":2,"score":0.5023646354675293},{"id":"https://openalex.org/C11392498","wikidata":"https://www.wikidata.org/wiki/Q11288","display_name":"Web server","level":3,"score":0.48042798042297363},{"id":"https://openalex.org/C2780741293","wikidata":"https://www.wikidata.org/wiki/Q4818019","display_name":"Attack patterns","level":3,"score":0.4581950604915619},{"id":"https://openalex.org/C2777904410","wikidata":"https://www.wikidata.org/wiki/Q7397","display_name":"Software","level":2,"score":0.45470529794692993},{"id":"https://openalex.org/C110875604","wikidata":"https://www.wikidata.org/wiki/Q75","display_name":"The Internet","level":2,"score":0.33595800399780273},{"id":"https://openalex.org/C136764020","wikidata":"https://www.wikidata.org/wiki/Q466","display_name":"World Wide Web","level":1,"score":0.3292285203933716},{"id":"https://openalex.org/C35525427","wikidata":"https://www.wikidata.org/wiki/Q745881","display_name":"Intrusion detection system","level":2,"score":0.28074848651885986},{"id":"https://openalex.org/C111919701","wikidata":"https://www.wikidata.org/wiki/Q9135","display_name":"Operating system","level":1,"score":0.19517070055007935},{"id":"https://openalex.org/C154945302","wikidata":"https://www.wikidata.org/wiki/Q11660","display_name":"Artificial intelligence","level":1,"score":0.0}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1109/eurocon.2013.6624967","is_oa":false,"landing_page_url":"https://doi.org/10.1109/eurocon.2013.6624967","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Eurocon 2013","raw_type":"proceedings-article"}],"best_oa_location":null,"sustainable_development_goals":[{"display_name":"Industry, innovation and infrastructure","score":0.5600000023841858,"id":"https://metadata.un.org/sdg/9"}],"awards":[],"funders":[],"has_content":{"grobid_xml":false,"pdf":false},"content_urls":null,"referenced_works_count":10,"referenced_works":["https://openalex.org/W1493911800","https://openalex.org/W1517527854","https://openalex.org/W1873122431","https://openalex.org/W2097481508","https://openalex.org/W2101173463","https://openalex.org/W2117717899","https://openalex.org/W2141087303","https://openalex.org/W2148725298","https://openalex.org/W2294935184","https://openalex.org/W6697087392"],"related_works":["https://openalex.org/W2362574935","https://openalex.org/W1926248","https://openalex.org/W3159372857","https://openalex.org/W2363507101","https://openalex.org/W4320401378","https://openalex.org/W1517527854","https://openalex.org/W776729438","https://openalex.org/W2147767253","https://openalex.org/W3118687971","https://openalex.org/W1560502410"],"abstract_inverted_index":{"In":[0,52],"the":[1,18,46,57,66,76,137,166,175],"field":[2],"of":[3,23,59,68,98],"computer":[4],"security,":[5],"honeypots":[6,116],"are":[7,132],"systems":[8],"aimed":[9,160],"at":[10,161],"deceiving":[11],"malicious":[12,107],"users":[13],"who":[14,74],"launch":[15],"attacks":[16,103],"against":[17],"servers":[19,135],"and":[20,44,92,104,142,151,168],"network":[21],"infrastructure":[22],"various":[24],"organizations.":[25],"They":[26],"can":[27],"be":[28],"deployed":[29],"as":[30,39,181],"protection":[31],"mechanisms":[32],"to":[33,42,81],"an":[34],"organization's":[35],"real":[36],"systems,":[37],"or":[38],"research":[40,61],"units":[41],"study":[43],"analyze":[45],"methods":[47],"employed":[48],"by":[49],"individual":[50],"hackers.":[51],"this":[53,110,184],"paper":[54],"we":[55,128,155],"present":[56,156],"results":[58],"a":[60,69,96,157],"honeypot's":[62],"operation,":[63],"which":[64],"undertook":[65],"role":[67],"web":[70],"trap":[71],"for":[72,172],"attackers":[73,131],"target":[75],"SSH":[77,125,177],"service":[78],"in":[79,121,136,183],"order":[80],"gain":[82],"illegal":[83],"server":[84],"access.":[85],"The":[86],"fake":[87],"system":[88],"has":[89],"remained":[90],"online":[91],"fully":[93],"operational":[94],"during":[95,165],"course":[97],"several":[99],"consequent":[100],"months,":[101],"capturing":[102],"logging":[105],"all":[106],"activity.":[108],"During":[109],"assessment":[111],"it":[112],"was":[113],"shown":[114],"that":[115,130],"remain":[117],"very":[118],"effective":[119],"tools":[120,141],"gathering":[122],"information":[123],"about":[124],"attacks.":[126],"Furthermore,":[127],"observed":[129],"constantly":[133],"targeting":[134],"wild":[138],"employing":[139],"ready-to-use":[140],"dictionaries,":[143],"while":[144],"their":[145],"post-compromise":[146],"actions":[147],"include":[148],"mostly":[149],"pivoting":[150],"IRC-related":[152],"activities.":[153],"Lastly":[154],"visualization":[158],"tool":[159],"helping":[162],"security":[163],"researchers":[164],"analysis":[167],"conclusions":[169],"drawing":[170],"phases,":[171],"use":[173],"with":[174],"same":[176],"honeypot":[178],"implementation":[179],"software":[180],"outlined":[182],"work.":[185]},"counts_by_year":[{"year":2025,"cited_by_count":7},{"year":2024,"cited_by_count":2},{"year":2023,"cited_by_count":3},{"year":2022,"cited_by_count":5},{"year":2021,"cited_by_count":8},{"year":2020,"cited_by_count":5},{"year":2019,"cited_by_count":2},{"year":2018,"cited_by_count":4},{"year":2017,"cited_by_count":1},{"year":2016,"cited_by_count":2},{"year":2015,"cited_by_count":3},{"year":2014,"cited_by_count":4},{"year":2013,"cited_by_count":1}],"updated_date":"2025-11-06T03:46:38.306776","created_date":"2025-10-10T00:00:00"}