GitPlanet

Cheap and reliable Node.js hosting starts at $3/month, and $1/month static HTML hosting

Created with love in Canada, visit hostnodejs.com today

Feel like to post an Ad? Learn Details
All Projects → DrakenWan → DDOS_Detection

DrakenWan / DDOS_Detection

Licence: MIT license
ddos attack detector using ML Algorithms

Programming Languages

Jupyter Notebook
11667 projects
python
139335 projects - #7 most used programming language

Labels

machine-learningddosinternetmlddos-attacksddos-protectionddos-detectorddos-attack-detectionpreventing-ddos

Projects that are alternatives of or similar to DDOS Detection

anti-ddos-lite
Anti-DDoS-Lite (Anti-Crawler app) is a small PHP app to protect your site against DDoS attack.
Stars: ✭ 96 (+152.63%)
Mutual labels:  ddos, ddos-attacks, ddos-protection
ddos
Simple dos attack utility
Stars: ✭ 36 (-5.26%)
Mutual labels:  ddos, ddos-attacks
Anti-DDOS-Script
Anti DDOS Protection that will stop DDOS from taking down your Linux Server
Stars: ✭ 51 (+34.21%)
Mutual labels:  ddos, ddos-protection
Fastnetmon
FastNetMon - very fast DDoS sensor with sFlow/Netflow/IPFIX/SPAN support
Stars: ✭ 2,860 (+7426.32%)
Mutual labels:  ddos, ddos-detector
PoW-Shield
Project dedicated to fight Layer 7 DDoS with proof of work, featuring an additional WAF. Completed with full set of features and containerized for rapid and lightweight deployment.
Stars: ✭ 99 (+160.53%)
Mutual labels:  ddos, ddos-protection
epiphany
A pre-DDoS security assessment tool
Stars: ✭ 106 (+178.95%)
Mutual labels:  ddos, ddos-protection
websploit
Websploit is an advanced MITM framework.
Stars: ✭ 105 (+176.32%)
Mutual labels:  ddos, ddos-attacks
Pummel
Socks5 Proxy HTTP/HTTPS-Flooding (cc) attack
Stars: ✭ 53 (+39.47%)
Mutual labels:  ddos, ddos-attacks
AMP-Research
Research on UDP/TCP amplification vectors, payloads and mitigations against their use in DDoS Attacks
Stars: ✭ 246 (+547.37%)
Mutual labels:  ddos, ddos-attacks
overload
📡 Overload DoS Tool (Layer 7)
Stars: ✭ 167 (+339.47%)
Mutual labels:  ddos, ddos-attacks
packet-captures
packet captures of real-world ddos attacks
Stars: ✭ 87 (+128.95%)
Mutual labels:  ddos, ddos-protection
awesome-ddos-tools
Collection of several DDos tools.
Stars: ✭ 75 (+97.37%)
Mutual labels:  ddos, ddos-attacks
Raven-Storm
Raven-Storm is a powerful DDoS toolkit for penetration tests, including attacks for several protocols written in python. Takedown many connections using several exotic and classic protocols.
Stars: ✭ 235 (+518.42%)
Mutual labels:  ddos, ddos-attacks
Ddos Scripts
This repo consists of various DDoS scripts, collected from internet. Layer-4 and Layer-7 levels can be targeted using these scripts.
Stars: ✭ 135 (+255.26%)
Mutual labels:  ddos, internet
Aoyama
A New version of Python3 botnet, old version: http://github.com/Leeon123/Python3-botnet
Stars: ✭ 161 (+323.68%)
Mutual labels:  ddos, ddos-attacks
ddos-mitigation
Tips to mitigate and secure your large-scale server against DDoS attacks.
Stars: ✭ 58 (+52.63%)
Mutual labels:  ddos, ddos-attacks
colabs
This repository holds the Google Colabs for the EdX TinyML Specialization
Stars: ✭ 73 (+92.11%)
Mutual labels:  ml
TFLite-Android-Helper
TensorFlow Lite Helper for Android to help getting started with TesnorFlow.
Stars: ✭ 25 (-34.21%)
Mutual labels:  ml
beauties
Essential personal Internet services
Stars: ✭ 29 (-23.68%)
Mutual labels:  internet
hashseq
A simple proof of work, mainly designed to mitigate DDoS attacks.
Stars: ✭ 20 (-47.37%)
Mutual labels:  ddos
View All Similar Projects ➔

2021 Update

I have created a new folder named SDN Dataset containing CSV file uploaded here by their authors. This dataset was generated in mid 2020 using mininet emulator. The dataset was specifically generated for ML or DL model training which is a plus. I have tested three sklearn models over the dataset in a jupyter notebook.

During pre-processing of data, I removed rows that had null values as well as "O" (Object) data type (which is actually String data). Removal of rows didn't affect the dataset size as it was significantly large. The values of each attribute was scaled using StandardScaler().

Models used to train with their train and test accuracies are:-

  • Logistic Regression - ~75
  • SGD Classifier - ~76
  • Multi-layer Perceptron neural network - ~99

NOTE

One point to note is that it is always better to let the accuracy be not close to 100 as if our model gets new data it doesn't know how to deal with, it might be less likely to deal with the data input properly. It might be overfitted. One way to look at it is if there is high deviation between train and test accuracies then you might've overfitted the data (if train accuracy is close to 100 but on validation data it is way less). In my case, that isn't the case so there might be other parameters.

I still am going to further investigate the 2020 data. One thing I can proceed with is performing data visualisation on each parameter and find any relationships manually that might've contributed to a certain bias. Maybe some value is occuring somewhere way too many times to be associated well with the predictor in our data given but in actuality is not really related with predictor rather it is just mere coincidence that in our current data that association was made by MLP.

To further elaborate this notion, Let's consider an example where I am classifying images based on the emotions of face and I have pictures of real life people with emotions such as angry, happy, sad, disgusted, etc. There might be a case where like 80% of the images which are classified as angry have a person with blue shirt. The model might associate the blue shirt as the sole factor to be consiered as an emotion of anger. We can solve this by introducing samples of 'angry' people with random coloured shirts or we can just crop out the shirt part from the image for better prediction. In this case, we are dealing with numerical data with thousands of rows. Best way is to use data visualisation techniques to determine any such relation.

Also this is not a simple ML problem. We are supposed to predict based on huge numerical data given if we are being attacked with a DDOS or not. This is not a simple problem. It is complex given the number of attributes.

Adding too many attributes leads to overfit. We can try different combinations of attributes to train our model.

The test size was 30%.

Check out the notebook file.

DDOS Detector Using Machine Learning (2019)

Project Authored by: Kartikay Kaul, Revanth Regeti

If you do not wish to read the verbose below just scroll to the END OF THIS DOCUMENT (Ensure you have all the python packages installed advised in start) and execute the given statements in windows cmd (ensure to run those commands where all project files are)

========================================================

Contents:

  • Running The program as its
  • Dataset
  • Running Notebooks

=========================================================

RUNNING THE PROGRAM AS IT IS

There are two main programs: train.py test.py

  • train.py is used to train the models(sklearn ones) on different protocols which will also take some parameters as input The file will exclusively ask for pretrained model to be stored on the system

  • test.py is used to extract the pretrained model and test the model on the parameters given

  • You need to have following softwares and python packages to run the python files successfully:

  • python3.6 or above

  • python packages: numpy, sklearn, pandas, matplotlib, pickle, tqdm

  • instead of above softwares you can simply install the anaconda distribution on python/R at this link. It will install all necessary python packages for data science for you

  • It is necessary for these python packages to be installed to run the train.py and test.py python files.

TRAINING OUR MODEL (This will take a lot of time)

go to windows commandline or anaconda prompt and type python train.py icmp 0

this will actually train the data set on icmp protocol with the KNN model.

If you wish to use the second model type python train.py icmp 1

You can even change the protocol from the choices "udp", "tcp_syn" and "icmp". So if you want to use tcp_syn protocol type and train it with KNN model type: python train.py tcp_syn 0

At the end of executing this command you will get something like this:

Data preprocessing done.
The model has been fit.
Save the fitted model?(y/n)

asking you to save the pre-trained model for future use. type "y" and press enter

CONGRATULATIONS! You saved your pre-trained model.

TESTING OUR MODEL

This is fast but a little tricky. You have to ensure how many parameters you input for testing out the class.

type python test.py tcp_syn -1.5 1.0 2.0 30.0 1.0

This will use the tcp_syn pre-trained model and test the given parameters on it.

Now each protocol has different parameter length as input. While tcp_syn protocol takes a length of 5 float value inputs others may take different inputs.

NOTE:

ICMP TAKES 7 ARGUMENTS

UDP TAKES 5 ARGUMENTS

TCP_SYN TAKES 5 ARGUMENTS

I have put command line statements below for you to execute and test the dataset.

python test.py tcp_syn -1.5 1.0 2.0 1.0 1.0

python test.py tcp_syn -1.5 1.0 2.0 30.0 1.0

python test.py icmp 0.0 0.0 30.0 0.0 1.0 0.0 0.0

python test.py icmp -0.1 30.0 0.0 2.0 0.0 0.0 2.0

python test.py udp 146.0 0.0 105.0 254.0 2.0

python test.py udp 45.0 -0.3 45.0 236.0 2.0

DATASET

All of the generated, consolidated and split dataset is stored in dataset folder and is open to use by any. The cleaned.csv file is KD99 generated dataset.

JUPYTER NOTEBOOKS

".ipynb" files can be run by installing jupyter on your system.

run pip3 install jupyter on your cmd

END OF FILE

Just follow below. You need not read the entire instructions given above.

EXECUTE FOLLOWING COMMANDS ON YOUR CMD:

python test.py tcp_syn -1.5 1.0 2.0 1.0 1.0

python test.py tcp_syn -1.5 1.0 2.0 30.0 1.0

python test.py icmp 0.0 0.0 30.0 0.0 1.0 0.0 0.0

python test.py icmp -0.1 30.0 0.0 2.0 0.0 0.0 2.0

python test.py udp 146.0 0.0 105.0 254.0 2.0

python test.py udp 45.0 -0.3 45.0 236.0 2.0

Note that the project description data, including the texts, logos, images, and/or trademarks, for each open source project belongs to its rightful owner. If you wish to add or remove any projects, please contact us at [email protected].