thc.org:/root/docs/intrusion_detection/nids/

Papers covering net-based intrusion detection research

Return to parent directory

A Learning Based Approach to the Detection of SQL Attacks

A Multi-model Approach to the Detection of Web-based Attacks

A comparative study of anomaly detection schemes in network intrusion detection

A Data Mining Framework for Building Intrusion Detection Models

A Framework For An Adaptive Intrusion Detection System with Data Mining

A Framework for Classifying Denial of Service Attacks

A Framework for Constructing Features and Models for Intrusion Detection Systems

A Geometric Framework for Unsupervised Anomaly Detection: Detecting Intrusions in Unlabeled Data

ADAM: Detecting Intrusions by Data Mining

Artificial Neural Networks for Misuse Detection

Adaptive Model-Based Monitoring and Threat Detection

Advanced Polymorphic Worms: Evading IDS by Blending with Normal Traffic

An Analysis of 1999 DARPA for Network Anomaly Detection

Anagram: A Content Anomaly Detector Resistant to Mimicry Attack

Anomalous Payload-based Network Intrusion Detection

Anomalous Payload-based Worm Detection and Signature Generation

Anomaly Detection of Web-based Attacks

Application of Artiticial Neural Network to Misuse Detection: Initial Results

Audit Data Reduction for Intrusion Detection

Autograph: Toward Automated, Distributed Worm Signature Detection

Bayesian Event Classification for Intrusion Detection

Bro: A System for Detecting Network Intruders in Real-Time

Characteristics of Network Flow Anomalies

Combining Knowledge Discovery and Knowledge Engineering to Build IDSs

Connection-history Based Anomaly Detection

Correlating Alerts Using Prerequistes of Intrusions

Detecting Anomalous Network Traffic with Self Organizing Map

Detecting Malicious JavaScript Code in Mozilla

Detecting Novel Scans Through Pattern Anomaly Detection

Detecting Viral Propagations Using Email Behaviour Profiles

Honeycom - Creating Intrusion Detection Signatures Using Honeypots

Intrusion Detection Using Ensemble of Soft Computing Paradigms

Intrusion Detection with Unlabeled Data Using Clustering

Intrusion Detection Systems using Adaptive Regression Splines

Language-based Generation and Evaluation of NIDS Signatures

Learning Rules for Anomaly Detection of Hostile Network Traffic

Mining in a data flow environment: Experience in Netowrk Intrusion Detection

Next-generation Instrusion Detection Expert System (NIDS): A summary

Network Traffic Anomaly Detection based on Packet Bytes

Polygraph: Automatically Generating Signatures for Polymorphic Worms

Towards Automatic Generation of Vulnerability Based Signatures

Towards the Scalable Implementation of a User Level Anomaly Detection System

Using Aritificial Anomalies to Detect Unknown and Known Network Intrusions