|
@@ -111,18 +111,18 @@ def main(args):
|
|
if __name__ == '__main__':
|
|
if __name__ == '__main__':
|
|
INPUT = ['-i']
|
|
INPUT = ['-i']
|
|
|
|
|
|
- FILES = ['/root/datasets/201506021400_1G.pcap',
|
|
|
|
- '/root/datasets/201506021400_2G.pcap',
|
|
|
|
- '/root/datasets/201506021400_5G.pcap']
|
|
|
|
|
|
+# FILES = ['/root/datasets/201506021400_1G.pcap',
|
|
|
|
+# '/root/datasets/201506021400_2G.pcap',
|
|
|
|
+# '/root/datasets/201506021400_5G.pcap']
|
|
|
|
|
|
- # FILES = ['/root/datasets/201506021400.pcap']
|
|
|
|
|
|
+ FILES = ['/root/datasets/201506021400_2G.pcap']
|
|
|
|
|
|
- # FILES = ['/mnt/hgfs/datasets/95M.pcap']
|
|
|
|
|
|
+# FILES = ['/root/test_me_short.pcap']
|
|
|
|
|
|
ATTACK_PS = ['-a', 'PortscanAttack', 'ip.src=10.2.2.4', 'mac.dst=05:AB:47:B5:19:11',
|
|
ATTACK_PS = ['-a', 'PortscanAttack', 'ip.src=10.2.2.4', 'mac.dst=05:AB:47:B5:19:11',
|
|
'inject.at-timestamp=1449038705.316721', 'attack.note=Portscan2']
|
|
'inject.at-timestamp=1449038705.316721', 'attack.note=Portscan2']
|
|
- ATTACK_PS2 = ['-a', 'PortscanAttack', 'ip.dst=193.133.122.23', 'ip.src=192.124.34.12', 'inject.after-pkt=34']
|
|
|
|
- ATTACK_DD = ['-a', 'DDoSAttack', 'attackers.count=10', 'packets.limit=10000']
|
|
|
|
|
|
+ ATTACK_PS2 = ['-a', 'PortscanAttack', 'port.dst=1-1024']
|
|
|
|
+ ATTACK_DD = ['-a', 'DDoSAttack', 'attackers.count=10', 'packets.limit=500000']
|
|
|
|
|
|
STATS_RECALC = ['-r']
|
|
STATS_RECALC = ['-r']
|
|
STATS_PRINT = ['-s']
|
|
STATS_PRINT = ['-s']
|
|
@@ -132,5 +132,5 @@ if __name__ == '__main__':
|
|
QUERY_DB = ['-q', 'ipAddress(pktsSent > 1000, kbytesSent >= 20)']
|
|
QUERY_DB = ['-q', 'ipAddress(pktsSent > 1000, kbytesSent >= 20)']
|
|
|
|
|
|
for f in FILES:
|
|
for f in FILES:
|
|
- main(INPUT + [f] + STATS_RECALC) # Statistics Calculation
|
|
|
|
|
|
+ main(INPUT + [f] + ATTACK_PS2) # Statistics Calculation
|
|
#main(INPUT + ATTACK_DD) # Attack Packet Generation -> insert exit() | Merging
|
|
#main(INPUT + ATTACK_DD) # Attack Packet Generation -> insert exit() | Merging
|