Netpy:高级网络流量监控

2009 International Conference on Intelligent Networking and Collaborative Systems Pub Date : 2009-11-04 DOI:10.1109/INCOS.2009.13

Andreea Cirneci, Stefan Boboc, C. Leordeanu, V. Cristea, Cristian Estan

{"title":"Netpy:高级网络流量监控","authors":"Andreea Cirneci, Stefan Boboc, C. Leordeanu, V. Cristea, Cristian Estan","doi":"10.1109/INCOS.2009.13","DOIUrl":null,"url":null,"abstract":"The paper presents an extension of NetPy, a network traffic visualization tool using NetFlow records. NetPy offers traffic visualization as well as a traffic analysis, which is very useful for the network administrators. NetPy has been re-designed to include a better Graphical User Interface to make the application easier to use and to present the information in the best way possible. The new version also improves the former analysis modules and offers new ways for the administrator to monitor and control events in the network, such as a comparative analysis. The application also integrates a new advanced intrusion detection module. The attacks that this module is able to detect will be presented, as well as the methods used. The Denial of Service, PortScan and custom defined attacks, based on the number of connections, the number of packets or the payload between hosts can be detected with a very good accuracy. The new NetPy version has been developed by a team from Politehnica University of Bucharest in collaboration with the department of Computer Science of the University of Wisconsin-Madison U.S.A.","PeriodicalId":145328,"journal":{"name":"2009 International Conference on Intelligent Networking and Collaborative Systems","volume":"49 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2009-11-04","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"9","resultStr":"{\"title\":\"Netpy: Advanced Network Traffic Monitoring\",\"authors\":\"Andreea Cirneci, Stefan Boboc, C. Leordeanu, V. Cristea, Cristian Estan\",\"doi\":\"10.1109/INCOS.2009.13\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"The paper presents an extension of NetPy, a network traffic visualization tool using NetFlow records. NetPy offers traffic visualization as well as a traffic analysis, which is very useful for the network administrators. NetPy has been re-designed to include a better Graphical User Interface to make the application easier to use and to present the information in the best way possible. The new version also improves the former analysis modules and offers new ways for the administrator to monitor and control events in the network, such as a comparative analysis. The application also integrates a new advanced intrusion detection module. The attacks that this module is able to detect will be presented, as well as the methods used. The Denial of Service, PortScan and custom defined attacks, based on the number of connections, the number of packets or the payload between hosts can be detected with a very good accuracy. The new NetPy version has been developed by a team from Politehnica University of Bucharest in collaboration with the department of Computer Science of the University of Wisconsin-Madison U.S.A.\",\"PeriodicalId\":145328,\"journal\":{\"name\":\"2009 International Conference on Intelligent Networking and Collaborative Systems\",\"volume\":\"49 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2009-11-04\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"9\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"2009 International Conference on Intelligent Networking and Collaborative Systems\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/INCOS.2009.13\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"2009 International Conference on Intelligent Networking and Collaborative Systems","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/INCOS.2009.13","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 9

摘要

本文介绍了基于NetFlow记录的网络流量可视化工具NetPy的扩展。NetPy提供流量可视化和流量分析，这对网络管理员非常有用。NetPy已经被重新设计，包括一个更好的图形用户界面，使应用程序更容易使用，并以最好的方式呈现信息。新版本还对以前的分析模块进行了改进，为管理员提供了对比分析等新的网络事件监控方式。该应用程序还集成了一个新的高级入侵检测模块。本文将介绍该模块能够检测到的攻击，以及使用的方法。拒绝服务，端口扫描和自定义攻击，基于连接的数量，数据包的数量或主机之间的有效载荷可以检测到非常好的准确性。新的NetPy版本是由布加勒斯特Politehnica大学的一个团队与美国威斯康星大学麦迪逊分校计算机科学系合作开发的

本文章由计算机程序翻译，如有差异，请以英文原文为准。

查看原文本刊更多论文

Netpy: Advanced Network Traffic Monitoring

The paper presents an extension of NetPy, a network traffic visualization tool using NetFlow records. NetPy offers traffic visualization as well as a traffic analysis, which is very useful for the network administrators. NetPy has been re-designed to include a better Graphical User Interface to make the application easier to use and to present the information in the best way possible. The new version also improves the former analysis modules and offers new ways for the administrator to monitor and control events in the network, such as a comparative analysis. The application also integrates a new advanced intrusion detection module. The attacks that this module is able to detect will be presented, as well as the methods used. The Denial of Service, PortScan and custom defined attacks, based on the number of connections, the number of packets or the payload between hosts can be detected with a very good accuracy. The new NetPy version has been developed by a team from Politehnica University of Bucharest in collaboration with the department of Computer Science of the University of Wisconsin-Madison U.S.A.

求助全文

通过发布文献求助，成功后即可免费获取论文全文。去求助

来源期刊

2009 International Conference on Intelligent Networking and Collaborative Systems

自引率

0.00%

发文量