DHCP

Download: dhcp Zip File

Abstract

Number of Instances:	3399	Security Area:	Network Protocols
Number of Attributes:	10	Date Donated:	2012
Missing Values?	-	Associated ML Tasks:	Network Analysis

Source

Mike Sconzo

Security Repository

Secrepo.com

Dataset Information

Analyzes DHCP traffic in order to log DHCP leases given to clients. This script ignores large swaths of the protocol, since it is rather noisy on most networks, and focuses on the end-result: assigned leases.

Attribute Information

	Data Type	Count	Unique Values
ts	float64	3399	3399
uid	object	3399	1699
id.orig_h	object	3399	128
id.orig_p	int64	3399	1
id.resp_h	object	3399	128
id.resp_p	int64	3399	1
mac	object	3399	128
assigned_ip	object	3399	128
lease_time	float64	3399	1
trans_id	int64	3399	3399

Relevant Papers

Bro Logs http://gauss.ececs.uc.edu/Courses/c6055/pdf/bro_log_vars.pdf

Neise, Patrick. "Intrusion Detection Through Relationship Analysis". Oct 2016 https://www.sans.org/reading-room/whitepapers/detection/intrusion-detection-relationship-analysis-37352

Frances Bernadette C. De Ocampo, Trisha Mari L. Del Castillo, Miguel Alberto N. Gomez. "AUTOMATED SIGNATURE CREATOR FOR A SIGNATURE BASED INTRUSION DETECTION SYSTEM WITH NETWORK ATTACK DETECTION CAPABILITIES". 2013 http://sdiwc.net/digital-library/automated-signature-creator-for-a-signature-based-intrusion-detection-system-with-network-attack-detection-capabilities-pancakes.html

Associate Data Science Notebook

https://github.com/cyberdefenders/MachineLearning/blob/master/Data_analysis/Bro%20Logs%20from%20Threatglass/Part%202/dhcpanalysis.ipynb