{"id":"https://openalex.org/W3208603300","doi":"https://doi.org/10.5281/zenodo.3759652","title":"PANDAcap SSH Honeypot Dataset","display_name":"PANDAcap SSH Honeypot Dataset","publication_year":2020,"publication_date":"2020-04-21","ids":{"openalex":"https://openalex.org/W3208603300","doi":"https://doi.org/10.5281/zenodo.3759652","mag":"3208603300"},"language":"en","primary_location":{"id":"pmh:oai:zenodo.org:3759652","is_oa":true,"landing_page_url":"https://zenodo.org/record/3759652","pdf_url":null,"source":{"id":"https://openalex.org/S4306400562","display_name":"Zenodo (CERN European Organization for Nuclear Research)","issn_l":null,"issn":null,"is_oa":true,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I67311998","host_organization_name":"European Organization for Nuclear Research","host_organization_lineage":["https://openalex.org/I67311998"],"host_organization_lineage_names":[],"type":"repository"},"license":"other-oa","license_id":"https://openalex.org/licenses/other-oa","version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"","raw_type":"info:eu-repo/semantics/other"},"type":"dataset","indexed_in":["datacite"],"open_access":{"is_oa":true,"oa_status":"green","oa_url":"https://zenodo.org/record/3759652","any_repository_has_fulltext":true},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5055916695","display_name":"Manolis Stamatogiannakis","orcid":"https://orcid.org/0000-0002-5527-8726"},"institutions":[{"id":"https://openalex.org/I865915315","display_name":"Vrije Universiteit Amsterdam","ror":"https://ror.org/008xxew50","country_code":"NL","type":"education","lineage":["https://openalex.org/I865915315"]}],"countries":["NL"],"is_corresponding":true,"raw_author_name":"Stamatogiannakis, Manolis","raw_affiliation_strings":["Vrije Universiteit Amsterdam"],"affiliations":[{"raw_affiliation_string":"Vrije Universiteit Amsterdam","institution_ids":["https://openalex.org/I865915315"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5029566823","display_name":"Herbert Bos","orcid":"https://orcid.org/0000-0001-6179-1510"},"institutions":[{"id":"https://openalex.org/I865915315","display_name":"Vrije Universiteit Amsterdam","ror":"https://ror.org/008xxew50","country_code":"NL","type":"education","lineage":["https://openalex.org/I865915315"]}],"countries":["NL"],"is_corresponding":false,"raw_author_name":"Bos, Herbert","raw_affiliation_strings":["Vrije Universiteit Amsterdam"],"affiliations":[{"raw_affiliation_string":"Vrije Universiteit Amsterdam","institution_ids":["https://openalex.org/I865915315"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5034924491","display_name":"Paul Groth","orcid":"https://orcid.org/0000-0003-0183-6910"},"institutions":[{"id":"https://openalex.org/I887064364","display_name":"University of Amsterdam","ror":"https://ror.org/04dkp9463","country_code":"NL","type":"education","lineage":["https://openalex.org/I887064364"]},{"id":"https://openalex.org/I865915315","display_name":"Vrije Universiteit Amsterdam","ror":"https://ror.org/008xxew50","country_code":"NL","type":"education","lineage":["https://openalex.org/I865915315"]}],"countries":["NL"],"is_corresponding":false,"raw_author_name":"Groth, Paul","raw_affiliation_strings":["Universiteit van Amsterdam"],"affiliations":[{"raw_affiliation_string":"Universiteit van Amsterdam","institution_ids":["https://openalex.org/I865915315","https://openalex.org/I887064364"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":3,"corresponding_author_ids":["https://openalex.org/A5055916695"],"corresponding_institution_ids":["https://openalex.org/I865915315"],"apc_list":null,"apc_paid":null,"fwci":null,"has_fulltext":false,"cited_by_count":0,"citation_normalized_percentile":null,"cited_by_percentile_year":null,"biblio":{"volume":null,"issue":null,"first_page":null,"last_page":null},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T11396","display_name":"Artificial Intelligence in Healthcare","score":0.45570001006126404,"subfield":{"id":"https://openalex.org/subfields/3605","display_name":"Health Information Management"},"field":{"id":"https://openalex.org/fields/36","display_name":"Health Professions"},"domain":{"id":"https://openalex.org/domains/4","display_name":"Health Sciences"}},"topics":[{"id":"https://openalex.org/T11396","display_name":"Artificial Intelligence in Healthcare","score":0.45570001006126404,"subfield":{"id":"https://openalex.org/subfields/3605","display_name":"Health Information Management"},"field":{"id":"https://openalex.org/fields/36","display_name":"Health Professions"},"domain":{"id":"https://openalex.org/domains/4","display_name":"Health Sciences"}},{"id":"https://openalex.org/T10400","display_name":"Network Security and Intrusion Detection","score":0.41850000619888306,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10538","display_name":"Data Mining Algorithms and Applications","score":0.4041000008583069,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/honeypot","display_name":"Honeypot","score":0.9619395732879639},{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.36628663539886475},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.12044867873191833}],"concepts":[{"id":"https://openalex.org/C191267431","wikidata":"https://www.wikidata.org/wiki/Q911932","display_name":"Honeypot","level":2,"score":0.9619395732879639},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.36628663539886475},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.12044867873191833}],"mesh":[],"locations_count":2,"locations":[{"id":"pmh:oai:zenodo.org:3759652","is_oa":true,"landing_page_url":"https://zenodo.org/record/3759652","pdf_url":null,"source":{"id":"https://openalex.org/S4306400562","display_name":"Zenodo (CERN European Organization for Nuclear Research)","issn_l":null,"issn":null,"is_oa":true,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I67311998","host_organization_name":"European Organization for Nuclear Research","host_organization_lineage":["https://openalex.org/I67311998"],"host_organization_lineage_names":[],"type":"repository"},"license":"other-oa","license_id":"https://openalex.org/licenses/other-oa","version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"","raw_type":"info:eu-repo/semantics/other"},{"id":"doi:10.5281/zenodo.3759652","is_oa":true,"landing_page_url":"https://doi.org/10.5281/zenodo.3759652","pdf_url":null,"source":{"id":"https://openalex.org/S4306400562","display_name":"Zenodo (CERN European Organization for Nuclear Research)","issn_l":null,"issn":null,"is_oa":true,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I67311998","host_organization_name":"European Organization for Nuclear Research","host_organization_lineage":["https://openalex.org/I67311998"],"host_organization_lineage_names":[],"type":"repository"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":null,"is_accepted":false,"is_published":null,"raw_source_name":null,"raw_type":"dataset"}],"best_oa_location":{"id":"pmh:oai:zenodo.org:3759652","is_oa":true,"landing_page_url":"https://zenodo.org/record/3759652","pdf_url":null,"source":{"id":"https://openalex.org/S4306400562","display_name":"Zenodo (CERN European Organization for Nuclear Research)","issn_l":null,"issn":null,"is_oa":true,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I67311998","host_organization_name":"European Organization for Nuclear Research","host_organization_lineage":["https://openalex.org/I67311998"],"host_organization_lineage_names":[],"type":"repository"},"license":"other-oa","license_id":"https://openalex.org/licenses/other-oa","version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"","raw_type":"info:eu-repo/semantics/other"},"sustainable_development_goals":[],"awards":[],"funders":[],"has_content":{"grobid_xml":false,"pdf":false},"content_urls":null,"referenced_works_count":0,"referenced_works":[],"related_works":["https://openalex.org/W2748952813","https://openalex.org/W2789663798","https://openalex.org/W2375896275","https://openalex.org/W4230913293","https://openalex.org/W2166943775","https://openalex.org/W2775236000","https://openalex.org/W2158007046","https://openalex.org/W2151915331","https://openalex.org/W2071426633","https://openalex.org/W2349754162"],"abstract_inverted_index":{"This":[0],"is":[1,70,137,167,360],"a":[2,18,248,363],"dataset":[3,14,95,136,285,392],"of":[4,24,36,93,112,117,149,173,225,419],"<strong>63":[5],"PANDA":[6,69,147,162,185,266,274,295,310,322],"traces</strong>,":[7],"collected":[8,32],"using":[9,50,272,308],"the":[10,22,34,67,73,87,94,118,145,150,156,165,171,183,191,197,205,210,214,223,226,237,257,262,265,273,284,294,306,309,320,325,329,353,385,391,402,405],"PANDAcap":[11,51],"framework.":[12],"The":[13,29,135,152],"aims":[15],"to":[16,42,76,180,182,203,221,244,279,304,319,351,379],"offer":[17],"starting":[19],"point":[20],"for":[21,58,66,79,109,164,213,236,261,289],"analysis":[23],"<em>ssh":[25],"brute":[26],"force":[27],"attacks</em>.":[28],"traces":[30,148,153,260,307,318],"were":[31],"through":[33,366,396],"course":[35],"approximately":[37],"3":[38,140],"days":[39],"from":[40],"21":[41],"23":[43],"February":[44],"2020.":[45,130],"A":[46,107,411],"VM":[47,354],"was":[48],"configured":[49],"so":[52],"that":[53,161],"it":[54,359],"accepts":[55],"all":[56],"passwords":[57],"user":[59],"<code>root</code>.":[60],"When":[61],"an":[62,91],"ssh":[63],"session":[64],"starts":[65],"user,":[68],"signaled":[71],"by":[72],"recctrl":[74],"plugin":[75],"start":[77],"recording":[78],"30'.":[80],"You":[81],"can":[82,189,218,251,301,389,422],"read":[83],"more":[84,370,416],"details":[85],"about":[86],"experimental":[88],"setup":[89],"and":[90,103,229,233,246],"overview":[92],"<strong>EuroSec":[96],"2020</strong>":[97],"publication:":[98],"Manolis":[99],"Stamatogiannakis,":[100],"Herbert":[101],"Bos,":[102],"Paul":[104],"Groth.":[105],"PANDAcap:":[106],"Framework":[108],"Streamlining":[110],"Collection":[111],"Full-System":[113],"Traces.":[114],"In":[115],"<em>Proceedings":[116],"13th":[119],"European":[120],"Workshop":[121],"on":[122,242,373],"Systems":[123],"Security</em>,":[124],"EuroSec":[125],"'20,":[126],"Heraklion,":[127],"Greece,":[128],"April":[129],"doi:":[131],"10.1145/3380786.3391396,":[132],"preprint:":[133],"vusec.net":[134],"split":[138],"in":[139,155,193,264,283,335,356,404],"zip":[141],"files/directories:":[142],"<strong>rr</strong>:":[143],"Contains":[144,196,256],"63":[146,215,238],"dataset.":[151],"are":[154],"upcoming":[157],"RRArchive":[158,317],"format.":[159],"Note":[160],"support":[163],"format":[166],"still":[168],"wip":[169],"at":[170],"time":[172],"writing":[174],"(April":[175],"2020).":[176],"If":[177,348,376],"you":[178,188,349,377,388],"need":[179],"downgrade":[181],"traditional":[184,321],"trace":[186],"format,":[187,323],"use":[190,390],"snippet":[192,327],"foo.":[194],"<strong>qcow</strong>:":[195],"QCOW":[198,249],"base":[199],"image":[200,250,355],"(<code>ubuntu16-planb.qcow2</code>)":[201],"used":[202,303],"create":[204],"dataset,":[206,387],"as":[207,209,286,362],"well":[208],"disk":[211,234],"deltas":[212,235],"traces.":[216,239,267],"These":[217,268],"be":[219,252,302,423],"mounted":[220],"inspect":[222,247],"contents":[224],"filesystem":[227],"before":[228],"after":[230],"each":[231],"session.":[232],"Quick":[240],"instructions":[241],"how":[243],"mount":[245],"found":[253,424],"below.":[254],"<strong>pcap</strong>:":[255],"pcap":[258],"network":[259,275],"sessions":[263],"have":[269,407],"been":[270,409],"extracted":[271],"plugin.":[276,312],"We":[277],"decided":[278],"also":[280],"include":[281],"them":[282],"standalone":[287,364],"files":[288,403],"convenience.":[290],"Additionally,":[291],"we":[292],"provide":[293],"linux":[296],"kernel":[297],"profile":[298],"<code>ubuntu16-planb-kernelinfo.conf</code>,":[299],"which":[300],"analyze":[305],"osi_linux":[311],"Additional":[313],"information:":[314],"To":[315],"convert":[316],"run":[324],"following":[326],"inside":[328],"<code>rr</code>":[330],"directory:":[331],"<pre><code":[332],"class=\"language-bash\">for":[333],"f":[334],"*.tar.gz;":[336],"do":[337],"tar":[338],"-zxvf":[339],"\"$f\"":[340,346],"--exclude=PANDArr":[341],"--xform='s%/%-%'":[342],"--xform='s%-metadata%%'":[343],"rm":[344],"-f":[345],"done</code></pre>":[347],"wish":[350,378],"reuse":[352],"your":[357],"project,":[358],"available":[361,395],"download":[365,380],"academictorrents.com,":[367],"along":[368],"with":[369],"detailed":[371],"information":[372,421],"its":[374],"contents.":[375],"individual":[381],"samples":[382],"rather":[383],"than":[384],"whole":[386],"torrent":[393,406],"file":[394],"academictorrents.com.":[397],"Unlike":[398],"this":[399,420],"Zenodo":[400],"deposit,":[401],"not":[408],"zipped.":[410],"better":[412],"formatted":[413],"(and":[414],"possibly":[415],"up-to-date)":[417],"version":[418],"here.":[425]},"counts_by_year":[],"updated_date":"2026-03-20T23:20:44.827607","created_date":"2025-10-10T00:00:00"}