Download: dns Zip File
| Number of Instances: | 47963 | Security Area: | Network Protocols |
|---|---|---|---|
| Number of Attributes: | 23 | Date Donated: | 2012 |
| Missing Values? | - | Associated ML Tasks: | Network Analysis |
Mike Sconzo
Security Repository
Secrepo.com
Base DNS analysis script which tracks and logs DNS queries along with their responses.
| Data Type | Count | Unique Values | Missing Values | |
|---|---|---|---|---|
| ts | float64 | 47963 | 44339 | 0 |
| uid | object | 47963 | 17991 | 0 |
| id.orig_h | object | 47963 | 128 | 0 |
| id.orig_p | int64 | 47963 | 1762 | 0 |
| id.resp_h | object | 47963 | 91 | 0 |
| id.resp_p | int64 | 47963 | 1 | 0 |
| proto | object | 47963 | 2 | 0 |
| trans_id | int64 | 47963 | 18099 | 0 |
| query | object | 41744 | 15775 | 6219 |
| qclass | float64 | 41744 | 1 | 6219 |
| qclass_name | object | 41744 | 1 | 6219 |
| qtype | float64 | 41744 | 6 | 6219 |
| qtype_name | object | 41744 | 6 | 6219 |
| rcode | float64 | 38183 | 4 | 9780 |
| rcode_name | object | 38183 | 4 | 9780 |
| AA | object | 47963 | 2 | 0 |
| TC | object | 47963 | 1 | 0 |
| RD | object | 47963 | 2 | 0 |
| RA | object | 47963 | 2 | 0 |
| Z | int64 | 47963 | 1 | 0 |
| answers | object | 34738 | 19816 | 13225 |
| TTLs | object | 34738 | 17591 | 13225 |
| rejected | object | 47963 | 2 | 0 |
Bro Logs http://gauss.ececs.uc.edu/Courses/c6055/pdf/bro_log_vars.pdf
Neise, Patrick. "Intrusion Detection Through Relationship Analysis". Oct 2016 https://www.sans.org/reading-room/whitepapers/detection/intrusion-detection-relationship-analysis-37352
Frances Bernadette C. De Ocampo, Trisha Mari L. Del Castillo, Miguel Alberto N. Gomez. "AUTOMATED SIGNATURE CREATOR FOR A SIGNATURE BASED INTRUSION DETECTION SYSTEM WITH NETWORK ATTACK DETECTION CAPABILITIES". 2013 http://sdiwc.net/digital-library/automated-signature-creator-for-a-signature-based-intrusion-detection-system-with-network-attack-detection-capabilities-pancakes.html