Suricata
latest
  • 1. What is Suricata
  • 2. Quickstart guide
  • 3. Installation
  • 4. Upgrading
  • 5. Security Considerations
  • 6. Support Status
  • 7. Command Line Options
  • 8. Suricata Rules
  • 9. Rule Management
  • 10. Making sense out of Alerts
  • 11. Performance
  • 12. Configuration
  • 13. Reputation
  • 14. Init Scripts
  • 15. Setting up IPS/inline for Linux
  • 16. Setting up IPS/inline for Windows
  • 17. Output
  • 18. Lua support
  • 19. File Extraction
  • 20. Public Data Sets
  • 21. Using Capture Hardware
  • 22. Interacting via Unix Socket
  • 23. 3rd Party Integration
  • 24. Man Pages
  • 25. Acknowledgements
  • 26. Licenses
  • 27. Suricata Developer Guide
  • 28. Verifying Suricata Source Distribution Files
Suricata
  • 20. Public Data Sets
  • Edit on GitHub

20. Public Data Sets

Collections of pcaps for testing and profiling.

DARPA sets: https://www.ll.mit.edu/r-d/datasets?author=All&rdarea=All&rdgroup=All&keywords=cyber&tag=All&items_per_page=10

MAWI sets (pkt headers only, no payloads): http://mawi.wide.ad.jp/mawi/samplepoint-F/2012/

MACCDC: http://www.netresec.com/?page=MACCDC

Netresec: http://www.netresec.com/?page=PcapFiles

Wireshark: https://gitlab.com/wireshark/wireshark/-/wikis/SampleCaptures

Security Onion collection: https://securityonion.net/docs/Pcaps

Stratosphere IPS. Malware Capture Facility Project: https://stratosphereips.org/category/dataset.html

Previous Next

© Copyright 2016-2024, OISF. Revision b5b81648.

Built with Sphinx using a theme provided by Read the Docs.