{"id":"https://openalex.org/W2771963642","doi":"https://doi.org/10.1145/3134600.3134646","title":"TTPDrill","display_name":"TTPDrill","publication_year":2017,"publication_date":"2017-12-04","ids":{"openalex":"https://openalex.org/W2771963642","doi":"https://doi.org/10.1145/3134600.3134646","mag":"2771963642"},"language":"en","primary_location":{"id":"doi:10.1145/3134600.3134646","is_oa":false,"landing_page_url":"https://doi.org/10.1145/3134600.3134646","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 33rd Annual Computer Security Applications Conference","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5085120545","display_name":"Ghaith Husari","orcid":null},"institutions":[{"id":"https://openalex.org/I102149020","display_name":"University of North Carolina at Charlotte","ror":"https://ror.org/04dawnj30","country_code":"US","type":"education","lineage":["https://openalex.org/I102149020"]}],"countries":["US"],"is_corresponding":true,"raw_author_name":"Ghaith Husari","raw_affiliation_strings":["Department of Software and Information Systems, University of North Carolina at Charlotte, Charlotte, NC, USA"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"Department of Software and Information Systems, University of North Carolina at Charlotte, Charlotte, NC, USA","institution_ids":["https://openalex.org/I102149020"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5043893479","display_name":"Ehab Al\u2010Shaer","orcid":"https://orcid.org/0000-0002-7665-8293"},"institutions":[{"id":"https://openalex.org/I102149020","display_name":"University of North Carolina at Charlotte","ror":"https://ror.org/04dawnj30","country_code":"US","type":"education","lineage":["https://openalex.org/I102149020"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Ehab Al-Shaer","raw_affiliation_strings":["Department of Software and Information Systems, University of North Carolina at Charlotte, Charlotte, NC, USA"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"Department of Software and Information Systems, University of North Carolina at Charlotte, Charlotte, NC, USA","institution_ids":["https://openalex.org/I102149020"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5101694896","display_name":"Mohiuddin Ahmed","orcid":"https://orcid.org/0000-0002-4559-4768"},"institutions":[{"id":"https://openalex.org/I102149020","display_name":"University of North Carolina at Charlotte","ror":"https://ror.org/04dawnj30","country_code":"US","type":"education","lineage":["https://openalex.org/I102149020"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Mohiuddin Ahmed","raw_affiliation_strings":["Department of Software and Information Systems, University of North Carolina at Charlotte, Charlotte, NC, USA"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"Department of Software and Information Systems, University of North Carolina at Charlotte, Charlotte, NC, USA","institution_ids":["https://openalex.org/I102149020"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5111575680","display_name":"Bill Chu","orcid":null},"institutions":[{"id":"https://openalex.org/I102149020","display_name":"University of North Carolina at Charlotte","ror":"https://ror.org/04dawnj30","country_code":"US","type":"education","lineage":["https://openalex.org/I102149020"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Bill Chu","raw_affiliation_strings":["Department of Software and Information Systems, University of North Carolina at Charlotte, Charlotte, NC, USA"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"Department of Software and Information Systems, University of North Carolina at Charlotte, Charlotte, NC, USA","institution_ids":["https://openalex.org/I102149020"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5069430572","display_name":"Xi Niu","orcid":"https://orcid.org/0000-0002-5418-6969"},"institutions":[{"id":"https://openalex.org/I102149020","display_name":"University of North Carolina at Charlotte","ror":"https://ror.org/04dawnj30","country_code":"US","type":"education","lineage":["https://openalex.org/I102149020"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Xi Niu","raw_affiliation_strings":["Department of Software and Information Systems, University of North Carolina at Charlotte, Charlotte, NC, USA"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"Department of Software and Information Systems, University of North Carolina at Charlotte, Charlotte, NC, USA","institution_ids":["https://openalex.org/I102149020"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":5,"corresponding_author_ids":["https://openalex.org/A5085120545"],"corresponding_institution_ids":["https://openalex.org/I102149020"],"apc_list":null,"apc_paid":null,"fwci":5.6004,"has_fulltext":false,"cited_by_count":202,"citation_normalized_percentile":{"value":0.96818244,"is_in_top_1_percent":false,"is_in_top_10_percent":true},"cited_by_percentile_year":{"min":98,"max":100},"biblio":{"volume":null,"issue":null,"first_page":"103","last_page":"115"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":0.9998999834060669,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":0.9998999834060669,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10400","display_name":"Network Security and Intrusion Detection","score":0.9965000152587891,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T12034","display_name":"Digital and Cyber Forensics","score":0.9962000250816345,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.7355952858924866},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.6058839559555054},{"id":"https://openalex.org/keywords/cyber-threats","display_name":"Cyber threats","score":0.6022724509239197},{"id":"https://openalex.org/keywords/analytics","display_name":"Analytics","score":0.6000256538391113},{"id":"https://openalex.org/keywords/cyber-attack","display_name":"Cyber-attack","score":0.43027758598327637},{"id":"https://openalex.org/keywords/data-science","display_name":"Data science","score":0.4274784028530121}],"concepts":[{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.7355952858924866},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.6058839559555054},{"id":"https://openalex.org/C3018725008","wikidata":"https://www.wikidata.org/wiki/Q4071928","display_name":"Cyber threats","level":2,"score":0.6022724509239197},{"id":"https://openalex.org/C79158427","wikidata":"https://www.wikidata.org/wiki/Q485396","display_name":"Analytics","level":2,"score":0.6000256538391113},{"id":"https://openalex.org/C201307755","wikidata":"https://www.wikidata.org/wiki/Q4071928","display_name":"Cyber-attack","level":2,"score":0.43027758598327637},{"id":"https://openalex.org/C2522767166","wikidata":"https://www.wikidata.org/wiki/Q2374463","display_name":"Data science","level":1,"score":0.4274784028530121}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1145/3134600.3134646","is_oa":false,"landing_page_url":"https://doi.org/10.1145/3134600.3134646","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 33rd Annual Computer Security Applications Conference","raw_type":"proceedings-article"}],"best_oa_location":null,"sustainable_development_goals":[],"awards":[],"funders":[],"has_content":{"grobid_xml":false,"pdf":false},"content_urls":null,"referenced_works_count":19,"referenced_works":["https://openalex.org/W79696261","https://openalex.org/W1516491920","https://openalex.org/W1654805921","https://openalex.org/W1707806712","https://openalex.org/W2014415866","https://openalex.org/W2019798206","https://openalex.org/W2046224275","https://openalex.org/W2081580037","https://openalex.org/W2094061585","https://openalex.org/W2112081648","https://openalex.org/W2157151973","https://openalex.org/W2278242120","https://openalex.org/W2407451098","https://openalex.org/W2538057479","https://openalex.org/W2538865281","https://openalex.org/W2592952865","https://openalex.org/W3124333016","https://openalex.org/W3186276894","https://openalex.org/W6827396533"],"related_works":["https://openalex.org/W3110311961","https://openalex.org/W2921897907","https://openalex.org/W2972971880","https://openalex.org/W2493430149","https://openalex.org/W4242728933","https://openalex.org/W3016154938","https://openalex.org/W4378628059","https://openalex.org/W2767924451","https://openalex.org/W4306412489","https://openalex.org/W2962899822"],"abstract_inverted_index":{"With":[0],"the":[1,5,30],"rapid":[2],"growth":[3],"of":[4,9,32,38,47],"cyber":[6,10,21,39],"attacks,":[7],"sharing":[8,60],"threat":[11,40],"intelligence":[12],"(CTI)":[13],"becomes":[14],"essential":[15],"to":[16,20,72],"identify":[17],"and":[18,25,35,44,53,65,68],"respond":[19],"attack":[22,66],"in":[23],"timely":[24],"cost-effective":[26],"manner.":[27],"However,":[28],"with":[29],"lack":[31],"standard":[33],"languages":[34],"automated":[36],"analytics":[37],"information,":[41],"analyzing":[42],"complex":[43],"unstructured":[45],"text":[46],"CTI":[48,59],"reports":[49],"is":[50],"extremely":[51],"time-":[52],"labor-consuming.":[54],"Without":[55],"addressing":[56],"this":[57],"challenge,":[58],"will":[61,70],"be":[62],"highly":[63],"impractical,":[64],"uncertainty":[67],"time-to-defend":[69],"continue":[71],"increase.":[73]},"counts_by_year":[{"year":2026,"cited_by_count":12},{"year":2025,"cited_by_count":57},{"year":2024,"cited_by_count":38},{"year":2023,"cited_by_count":25},{"year":2022,"cited_by_count":20},{"year":2021,"cited_by_count":20},{"year":2020,"cited_by_count":13},{"year":2019,"cited_by_count":11},{"year":2018,"cited_by_count":6}],"updated_date":"2026-05-19T08:33:51.333923","created_date":"2017-12-22T00:00:00"}