Feature Engineering and Machine Learning Framework for DDoS Attack Detection in the Standardized Internet of Things
NOTE : WORKS ONLY IN LINUX (UBUNTU)
Full Project avalable on ns-ddos
This project implements a feature engineering and machine learning framework for detecting Distributed Denial of Service (DDoS) attacks in the Internet of Things (IoT) environment. The framework utilizes sFlow, Floodlight, and Mininet for real-time detection.
- Features
- Technologies Used
- System Design
- File Structure
- Installation
- Usage
- Dataset
- Real-Time Detection
- Results
- Real-time DDoS detection using machine learning algorithms.
- Traffic sampling with sFlow.
- Network emulation with Mininet.
- Centralized control with Floodlight SDN controller.
- Feature extraction from network traffic data.
Python 3.6+MininetFloodlight SDN ControllersFlow-RTScikit-learnPandasNumPy
| System Design |
|---|
| File Structure |
|---|
-
Download File : ns-ddos
-
Set up Mininet: Follow the instructions on the Mininet website to install Mininet.
-
Set up Floodlight: Follow the instructions in the Floodlight configuration file (Floodlight Installation Steps) to configure Flood Light.
-
Set up sFlow-RT: Follow the instructions on the sFlow-RT website to install and configure sFlow-RT.
Follow the instructions in the Command.txt
The dataset used for training and testing the machine learning models consists of network traffic data generated in the Mininet environment. The traffic data includes normal traffic as well as DDoS attack traffic.
The ns-ddos file utilizes the trained machine learning model to detect DDoS attacks in real-time. It processes the incoming network traffic data and predicts whether it is normal or attack traffic.
| Dashboard | DDoS Protect |
|---|---|
| Metric Browser | Data Flow Test |
| Flow Trend | DDoS Protect Settings |