IEEE

Model-Driven Network Monitoring Using NetFlow Applied to Threat Detection

Abstract: In recent years, several research works have proposed the analysis of network flow information using machine learning in order to detect threats or anomalous activities. In this sense, ...
GitHub

Simple web UI showing top flows seen by Suricata.

Pick a directory where to install the files. For the purposes of this guide we'll use /usr/local/suricata-netflow-top. In this directory you should have the netflow.lua script and the netflow ...
IEEE

A NetFlow based internet-worm detecting system in large network

Abstract: The Internet worm infects the computer system, network packet, communication performance, and the traditional method of managing network using SNMP to monitor abnormal network traffic. To ...
GitHub

GoogleCloudPlatform/df-ml-anomaly-detection

This repo provides a reference implementation of a Cloud Dataflow streaming pipelines that integrates with BigQuery ML, Cloud AI Platform, and AutoML (coming soon!) to perform anomaly detection use ...