Botnet dataset with simultaneous attack activity

Muhammad Aidiel Rachman Putra, Dandy Pramana Hostiadi, Tohari Ahmad*

*Corresponding author for this work

Research output: Contribution to journalArticlepeer-review

16 Citations (Scopus)

Abstract

The proposed dataset shows characteristics of simultaneous botnet attack activities. Botnet network traffic has sequentially interconnected as formed as bidirectional network flow (binetflow), which is combined with normal activities. The dataset is generated from a simulation process by extracting botnet pattern behaviors taken from CTU-13 and NCC datasets. The extraction results are utilized as the basis for simulations to produce a new dataset with simultaneous botnet attack activities. The term “simultaneous attack activities” refers to an attack activity that involves multiple botnets and happens at the same time. The dataset contains several botnet types distributed over three detection sensors. Each dataset has 18 network header features with a total recording duration of 8 h. The bot attack spreads must be appropriately handled by efficient processing, also known as parallel computation detection.

Original languageEnglish
Article number108628
JournalData in Brief
Volume45
DOIs
Publication statusPublished - Dec 2022

Keywords

  • Bot communication behavior
  • Bot group activities
  • Botnet dataset
  • Infrastructure
  • Network security

Fingerprint

Dive into the research topics of 'Botnet dataset with simultaneous attack activity'. Together they form a unique fingerprint.

Cite this