“…Despite many previous attempts at botnet measurement [13,10,22,15,6] and botnet detection [8,12,16,7,18,9,23], little attention has been paid to attack prediction. There are many different motivations for attack prediction, such as predicting the DDoS start time of the next expected attack from a particular botnet family [21], blocking hostile traffic in the future by measuring an indicator of how likely it is that the network will contain compromised hosts [11],…”