Enriching DNS Flows with Host-Based Events to Bypass Future Protocol Encryption - Scripts for Data Processing
Creators
- 1. Institute of Computer Science and Faculty of Informatics, Masaryk University, Brno, Czech Republic
Description
This archive contains scripts used in the experimental DNS event-flow matching introduced in the paper Enriching DNS Flows with Host-Based Events to Bypass Future Protocol Encryption. The paper covers the theory of the event flow-matching and demonstrates it on the DNS protocol transmissions and logs captured in the Cyber Czech 2018 dataset. The purpose of this archive is to provide all scripts used in the research and ensure repeatability and verifiability of the results presented in the paper.
The archive contains the filtering script for the transformation of the initial Cyber Czech dataset into the research dataset, the scripts with all the matching methods described in the paper, and the evaluation script. All the scripts are written in Python and are compatible with the Python version 3.9. To simplify working with the scripts, a comprehensive readme with usage examples is provided, as well as the prefiltered research dataset.
Files
dns-event-flow-matching.zip
Files
(9.3 MB)
Name | Size | Download all |
---|---|---|
md5:ddf643adfbbb79245440178fa2c1fb27
|
9.3 MB | Preview Download |
Additional details
Related works
- References
- Dataset: 10.1016/j.dib.2020.105784 (DOI)