TUNNEL

Download: tunnel Zip File

Abstract

Number of Instances:	280	Security Area:	Network Protocols
Number of Attributes:	8	Date Donated:	2012
Missing Values?	-	Associated ML Tasks:	Network Analysis

Source

Mike Sconzo

Security Repository

Secrepo.com

Dataset Information

This script handles the tracking/logging of tunnels (e.g. Teredo, AYIYA, or IP-in-IP such as 6to4 where “IP” is either IPv4 or IPv6). For any connection that occurs over a tunnel, information about its encapsulating tunnels is also found in the tunnel field of connection.

Attribute Information

	Data Type	Count	Unique Values
ts	float64	280	280
uid	object	280	140
id.orig_h	object	280	3
id.orig_p	int64	280	139
id.resp_h	object	280	81
id.resp_p	int64	280	1
tunnel_type	object	280	1
action	object	280	2

Relevant Papers

Bro Logs http://gauss.ececs.uc.edu/Courses/c6055/pdf/bro_log_vars.pdf

Intrusion Detection Through Relationship Analysis https://www.sans.org/reading-room/whitepapers/detection/intrusion-detection-relationship-analysis-37360

Associate Data Science Notebook

https://github.com/cyberdefenders/MachineLearning/blob/master/Data_analysis/Network%20analysis/tunnel%20analysis.ipynb