Download: tunnel Zip File
Number of Instances: | 280 | Security Area: | Network Protocols |
---|---|---|---|
Number of Attributes: | 8 | Date Donated: | 2012 |
Missing Values? | - | Associated ML Tasks: | Network Analysis |
Mike Sconzo
Security Repository
Secrepo.com
This script handles the tracking/logging of tunnels (e.g. Teredo, AYIYA, or IP-in-IP such as 6to4 where “IP” is either IPv4 or IPv6). For any connection that occurs over a tunnel, information about its encapsulating tunnels is also found in the tunnel field of connection.
Data Type | Count | Unique Values | Missing Values | |
---|---|---|---|---|
ts | float64 | 280 | 280 | 0 |
uid | object | 280 | 140 | 0 |
id.orig_h | object | 280 | 3 | 0 |
id.orig_p | int64 | 280 | 139 | 0 |
id.resp_h | object | 280 | 81 | 0 |
id.resp_p | int64 | 280 | 1 | 0 |
tunnel_type | object | 280 | 1 | 0 |
action | object | 280 | 2 | 0 |
Bro Logs http://gauss.ececs.uc.edu/Courses/c6055/pdf/bro_log_vars.pdf
Intrusion Detection Through Relationship Analysis https://www.sans.org/reading-room/whitepapers/detection/intrusion-detection-relationship-analysis-37360