Giter VIP home page Giter VIP logo

ids_netflow_based_system's Introduction

##########################################################################################
##                                                                         				##
## dosflowsys.py --- NetFlow Based System For Detecting DoS and DDoS Attacks ---        ##
##   																					##
##     Copyright (C) 2012 : Froyo      													##
##                                                								        ##
##     This program is free software; you can redistribute it and/or modify it          ##
##   under the terms of the GNU General Public License version 2 as                     ##
##   published by the Free Software Foundation.                                         ##
##                                                                         			  	##
##   This program is distributed in the hope that it will be useful, but     			##
##   WITHOUT ANY WARRANTY; without even the implied warranty of              			##
##   MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the GNU       			##
##   General Public License for more details.                                			##
##                                                                         				##
##########################################################################################

=============
Requirements
=============

 -> Python 2.5 or higher : "http://www.python.org/download/"
 -> Scapy tool v2.x : "http://www.secdev.org/projects/scapy/doc/installation.html"

=============
Installation:
=============
It is needed to copy the "netflowV9.py" file into "/usr/local/lib/python2.x/site-packages/scapy/layers/" for adding the Cisco NetFlow protocol to Scapy tools.

:~$ cp netflowV9.py /usr/local/lib/python2.x/site-packages/scapy/layers/netflowV9.py
:~$ cp dosflowsys.py .
:~$ mkdir servers # to create the "servers" that contains configuration files for each server to be probed

==============
It is needed to define a configuration file for each server into "servers" directory

An example is given below:

filename: "192.168.1.1"

PORT_DST = 53, 80, 22 # listening and open port numbers
MAX_TCP_CLIENTS = 4000 # maximum number of TCP clients supported by the server
MAX_LATENCY = 100 # maximum acceptable latency
MAX_SYN_BACKLOG = 2048 # backlog queue size

Usage:
======

:~$ python2.x dosflowsys.py

ids_netflow_based_system's People

Contributors

froyo75 avatar

Recommend Projects

  • React photo React

    A declarative, efficient, and flexible JavaScript library for building user interfaces.

  • Vue.js photo Vue.js

    ๐Ÿ–– Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.

  • Typescript photo Typescript

    TypeScript is a superset of JavaScript that compiles to clean JavaScript output.

  • TensorFlow photo TensorFlow

    An Open Source Machine Learning Framework for Everyone

  • Django photo Django

    The Web framework for perfectionists with deadlines.

  • D3 photo D3

    Bring data to life with SVG, Canvas and HTML. ๐Ÿ“Š๐Ÿ“ˆ๐ŸŽ‰

Recommend Topics

  • javascript

    JavaScript (JS) is a lightweight interpreted programming language with first-class functions.

  • web

    Some thing interesting about web. New door for the world.

  • server

    A server is a program made to process requests and deliver data to clients.

  • Machine learning

    Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.

  • Game

    Some thing interesting about game, make everyone happy.

Recommend Org

  • Facebook photo Facebook

    We are working to build community through open source technology. NB: members must have two-factor auth.

  • Microsoft photo Microsoft

    Open source projects and samples from Microsoft.

  • Google photo Google

    Google โค๏ธ Open Source for everyone.

  • D3 photo D3

    Data-Driven Documents codes.