Wednesday, December 11, 2019

Feature Extraction from PCAP file

I was following along this paper: https://cyber.bgu.ac.il/wp-content/uploads/2017/10/07346821.pdf and I was curious as to how they extracted the data from the PCAP file. According to the authors, this was what made their approach to malware detection unique and special.

The full list of features they were able to extract can be found here: http://www.ise.bgu.ac.il/dima/Network_Traffic_Features_Set.pdf

Does anyone have any experience doing this? Other papers I have looked at simply say they used the feature extraction tool from this paper, but I am not understanding it well enough to implement it by myself.

Suggestion on how to do this, or repositories where code needed to do this can found would be greatly appreciated!



No comments:

Post a Comment