CONDENSER: A custom tool for capturing and summarizing network traffic for AVALANCHE and ISEAGEMaughan, Jason (2008) CONDENSER: A custom tool for capturing and summarizing network traffic for AVALANCHE and ISEAGE. Masters thesis, Iowa State University. Full text available as:
AbstractThe Cyber-world is becoming an environment that is increasingly plagued by botnets and other programs adept at creating distributed and flooding-based attacks. These forms of assault are currently some of the most feared types of attacks being faced by networks. The Internet Scale Event and Attack Generation Environment (ISEAGE) at Iowa State University, has been established to help researchers study actions and events that happen on the Internet. ISEAGE uses a custom tool, AVALANCHE, to simulate distributed and flooding-based attacks. While AVALANCHE is able to launch large quantities of attack packets, its ability to react and handle the enormity of responses from targeted hosts comes from the functionality afforded by the CONDENSER. The CONDENSER uses multi-threaded artificial intelligence methods for efficiently catching the return traffic generated by targeted hosts, storing the payloads of captured packets, calculating statistics about the collection, reducing the captured payloads into a single representative-packet, and facilitating communication with remote command/control clients. These capabilities allow researchers to gain important insights into defensive measures and devices needed to stop distributed and flooding-based attacks.
Archive Staff Only: edit this record |
