Download: files Zip File
| Number of Instances: | 839716 | Security Area: | Files |
|---|---|---|---|
| Number of Attributes: | 21 | Date Donated: | 2012 |
| Missing Values? | - | Associated ML Tasks: | Network Analysis |
Mike Sconzo
Security Repository
Secrepo.com
An interface for driving the analysis of files, possibly independent of any network protocol over which they’re transported.
| Data Type | Count | Unique Values | Missing Values | |
|---|---|---|---|---|
| ts | object | 839716 | 138 | 0 |
| fuid | object | 839716 | 140 | 0 |
| tx_hosts | object | 839716 | 419937 | 0 |
| rx_hosts | object | 839716 | 2 | 0 |
| conn_uids | int64 | 839716 | 1 | 0 |
| source | object | 839716 | 3 | 0 |
| depth | object | 839711 | 30 | 5 |
| analyzers | object | 38 | 27 | 839678 |
| mime_type | float64 | 839716 | 188 | 0 |
| filename | float64 | 0 | 0 | 839716 |
| duration | object | 839716 | 2 | 0 |
| local_orig | int64 | 839716 | 4151 | 0 |
| is_orig | float64 | 571045 | 2685 | 268671 |
| seen_bytes | int64 | 839716 | 6 | 0 |
| total_bytes | int64 | 839716 | 1 | 0 |
| missing_bytes | object | 839716 | 2 | 0 |
| overflow_bytes | float64 | 0 | 0 | 839716 |
| timedout | object | 839497 | 478709 | 219 |
| parent_fuid | object | 839497 | 478709 | 219 |
| md5/sha1/sha256 | float64 | 0 | 0 | 839716 |
| extracted | float64 | 0 | 0 | 839716 |
Bro Logs http://gauss.ececs.uc.edu/Courses/c6055/pdf/bro_log_vars.pdf
Intrusion Detection Through Relationship Analysis https://www.sans.org/reading-room/whitepapers/detection/intrusion-detection-relationship-analysis-37356