Ask Your Question

Revision history [back]

click to hide/show revision 1
initial version

asked 2019-11-13 14:45:50 +0000

kostaspsy gravatar image

UNB ISCX 2012 pcap file labels

Hello,

Please excuse me if the post is no relevant to the forum's nature, but i can't find any better place to ask.

I have downloaed the UNB ISCX 2012 data set, including pcap files for 7 different days that contain normal and anomalous (insider intrusion network activity).

I am pre-processing these files using a tool developed by UNB: CICFlowMeter-4.0. which generates a csv files of bi-directional flows, where each flow has a set of (80+) features. The data set is labeled.

My question is:

Can the ground truth be placed inside a pcap file? Because a pcap file is in a byte-format and i wouldn't expect normal/anomalous labels of ones and zeros to be found in the pcap file.

The output of CICFlowMeter-4.0 gives me the flows in csv format with their features. The last column (feauture) is Labels and every row has value "No Label" for this column.

I am trying to find a way to replicate their pre-processing step and get the features + the labels.

emphasized text

UNB ISCX 2012 pcap file labels

Hello,

Please excuse me if the post is no not relevant to the forum's nature, but i can't find any better place to ask.

I have downloaed downloaded the UNB ISCX 2012 data set, including pcap files for 7 different days that contain normal and anomalous (insider intrusion network activity).

I am pre-processing these files using a tool developed by UNB: CICFlowMeter-4.0. which generates a csv files of bi-directional flows, where each flow has a set of (80+) features. The data set is labeled.

My question is:

Can the ground truth be placed inside a pcap file? Because a pcap file is in a byte-format and i wouldn't expect normal/anomalous labels of ones and zeros to be found in the pcap file.

The output of CICFlowMeter-4.0 gives me the flows in csv format with their features. The last column (feauture) is Labels and every row has value "No Label" for this column.

I am trying to find a way to replicate their pre-processing step and get the features + the labels.

emphasized text

UNB ISCX 2012 pcap file labels

Hello,

Please excuse me if the post is not relevant to the forum's nature, but i can't find any better place to ask.

I have downloaded the UNB ISCX 2012 data set, including pcap files for 7 different days that contain normal and anomalous (insider intrusion network activity).activity) packets.

I am pre-processing these files using a tool developed by UNB: CICFlowMeter-4.0. which generates a csv files of bi-directional flows, where each flow has a set of (80+) features. The data set is labeled.

My question is:

Can the ground truth be placed inside a pcap file? Because a pcap file is in a byte-format and i wouldn't expect normal/anomalous labels of ones and zeros to be found in the pcap file.

The output of CICFlowMeter-4.0 gives me the flows in csv format with their features. The last column (feauture) is Labels and every row has value "No Label" for this column.

I am trying to find a way to replicate their pre-processing step and get the features + the labels.

emphasized text

Copyright Wireshark Foundation, 2017-2023 Content on this site is licensed under a Creative Commons Attribution Share Alike 3.0 license.
about | faq | help | privacy policy | terms of service
Powered by Askbot version 0.10.2