Frequently, port scans are early indicators of more serious attacks. Unfortunately, the detection of slow port scans in company networks is challenging due to the massive amount of network data. This paper proposes an innovative approach for preprocessing flow-based data which is specifically tailored to the detection of slow port scans. The preprocessing chain generates new objects based on flow-based data aggregated over time windows while taking domain knowledge as well as additional knowledge about the network structure into account. The computed objects are used as input for the further analysis. Based on these objects, we propose two different approaches for detection of slow port scans. One approach is unsupervised and uses sequential hypothesis testing whereas the other approach is supervised and uses classification algorithms. We compare both approaches with existing port scan detection algorithms on the flow-based CIDDS-001 data set. Experiments indicate that the proposed approaches achieve better detection rates and exhibit less false alarms than similar algorithms.
Download full-text PDF |
Source |
|---|---|
| http://www.ncbi.nlm.nih.gov/pmc/articles/PMC6156027 | PMC |
| http://journals.plos.org/plosone/article?id=10.1371/journal.pone.0204507 | PLOS |
Publication Analysis
Top Keywords
Similar Publications
Background: Abdominal ultrasound imaging is a standard diagnostic tool used in clinical practice. Understanding the patterns of sonographic findings in specific population demographics can lead to better clinical decisions and improved patient management. This study will evaluate the prevalent abdominal ultrasound scan findings and explore their demographic patterns based on age and sex characteristics at the University of Port Harcourt Teaching Hospital.
View Article and Find Full Text PDFNovel brain SPECT imaging unravels abnormal cerebral perfusion in patients with postural orthostatic tachycardia syndrome and cognitive dysfunction.
Sci Rep
January 2025
Australian Dysautonomia and Arrhythmia Research Collaborative, Adelaide, SA, Australia.
Cognitive dysfunction is frequently reported in individuals with postural orthostatic tachycardia syndrome (POTS), possibly resulting from reduced cerebral blood flow (CBF). We used brain SPECT, an accessible imaging modality that has not been systematically evaluated in this patient group. Retrospective review of participants from our registry was undertaken to identify those who had a brain SPECT performed for investigation of cognitive dysfunction.
View Article and Find Full Text PDFHigh-efficiency three-port beam splitter under normal incidence.
J Opt Soc Am A Opt Image Sci Vis
August 2024
A fused-silica three-port grating under TE-polarized normal incidence is designed and manufactured with improved diffraction efficiency (DE) and bandwidth. A physical explanation of the grating diffraction is provided using the simplified mode method (SMM), and parameters of the grating structure were optimized using rigorous coupled-wave analysis (RCWA). For a given set of optimized parameters, a transmitted three-port grating with an area of 170 ×170 was fabricated by scanning beam interference lithography (SBIL), and diffraction properties were investigated.
View Article and Find Full Text PDFUnlabelled: is a high-priority organism for the development of new antibacterial treatments. We found that the antimalarial medication mefloquine (MFQ) permeabilized the bacterial cell membrane of , decreased membrane fluidity, and caused physical injury to the membrane. MFQ also maintained activity across different pH conditions (PH range 5-8).
View Article and Find Full Text PDFN-Branched Tricyclic Guanidines as Novel Melanocortin-3 Receptor Agonists and Melanocortin-4 Receptor Antagonists.
J Med Chem
January 2025
Department of Medicinal Chemistry and the Institute for Translational Neuroscience, University of Minnesota, Minneapolis, Minnesota 55455, United States.
The melanocortin receptors are a class of centrally and peripherally expressed G protein-coupled receptors, of which the MC3R and MC4R subtypes are implicated in the regulation of appetite and energy homeostasis and can serve as potential therapeutic targets for disorders such as obesity and cachexia. An unbiased high-throughput mixture-based library screen was implemented to identify novel ligands with an emphasis on the identification of nanomolar-potent agonists of the mouse melanocortin-3 receptor. This screen yielded the discovery of an N-branched tricyclic guanidine scaffold (TPI2408) that contained three nanomolar potent mMC3R agonists and additional compounds that possessed antagonism for the mMC4R.
View Article and Find Full Text PDFWant AI Summaries of new PubMed Abstracts delivered to your In-box?
Enter search terms and have AI summaries delivered each week - change queries or unsubscribe any time!