To search, Click below search items.


All Published Papers Search Service


Information Extraction for Offline Traffi Anomaly Detection in NIDS


Renuka Prasad.B, Annamma Abraham, Chandan. C, Prabhanjan.A, AjayBilotia


Vol. 8  No. 9  pp. 309-315


This paper discusses an efficient approach for extracting information from the libpcap compatible network data using scripting languages. The extracted information will be used for traffic anomaly detection in network intrusion detection systems. The information extraction is done on DARPA 1998 dataset. Extraction process includes exporting the dataset into plain text or csv format using wireshark (network sniffing tools) and then extracting the information using scripting languages. The results obtained from the scripts written using gawk, awk, sed and perl are compared with the results obtained from the DDL, DML, procedures given to the database. It is found that the use of scripts along with queries was more efficient than using just using DDL, DML, procedures on database or scripting languages alone for extracting information


IDS, NIDS, anomaly detection, information extraction,gawk, DDL, DML, sed, pager.