[Oisf-users] eve json samples
Ale Fredes
amfh2408 at gmail.com
Thu Nov 16 11:45:02 UTC 2017
Hello everyone!
I found it a pcap file here
https://mcfp.weebly.com/the-ctu-13-dataset-a-labeled-dataset-with-botnet-normal-and-background-traffic.html.
So after that, I analized the file with Suricata to get the output. Thanks
for your help!
Best Regards,
Alexis
<https://www.avast.com/sig-email?utm_medium=email&utm_source=link&utm_campaign=sig-email&utm_content=webmail>
Libre
de virus. www.avast.com
<https://www.avast.com/sig-email?utm_medium=email&utm_source=link&utm_campaign=sig-email&utm_content=webmail>
<#DAB4FAD8-2DD7-40BB-A1B8-4E2AA1F9FDF2>
2017-11-10 17:42 GMT-03:00 Victor Julien <lists at inliniac.net>:
> On 10-11-17 16:37, Ale Fredes wrote:
> > Hello everyone!
> >
> > I am trying to analize eve.json output file of Suricata with Weka tool.
> > Anyone know where can I find an eve.json sample? Because mine is not big
> > enough to get good results. My target is to apply machine learning with
> > Weka and then generate new rules.
> >
>
>
> Maybe you can create your own by running Suricata against these data sets:
>
> http://suricata.readthedocs.io/en/latest/public-data-sets.html
>
> https://www.defcon.org/html/links/dc-ctf.html
>
> --
> ---------------------------------------------
> Victor Julien
> http://www.inliniac.net/
> PGP: http://www.inliniac.net/victorjulien.asc
> ---------------------------------------------
>
> _______________________________________________
> Suricata IDS Users mailing list: oisf-users at openinfosecfoundation.org
> Site: http://suricata-ids.org | Support: http://suricata-ids.org/support/
> List: https://lists.openinfosecfoundation.org/mailman/listinfo/oisf-users
>
> Conference: https://suricon.net
> Trainings: https://suricata-ids.org/training/
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openinfosecfoundation.org/pipermail/oisf-users/attachments/20171116/9902d7ff/attachment-0002.html>
More information about the Oisf-users
mailing list