Validity of labeling these flows as 'Web Attack - Brute Force'?
Thursday-WorkingHours.csv
Sample line numbers:
212523
182972
227215
15513
243050
141905
342479
350904
333539
229032
350953
316507
318956
This is a small sample of flows that I have picked up, compared to other flows in the attack category which has 30+ requests in a single flow, these flows (trace back to .pcap) consist of a single HTTP request. Not sure if it is because of botchy implementation, as according to their documentation this attack was custom written by them, but I do not think that these flows can be considered to be what their current labels are.
Validity of labeling these flows as 'Web Attack - Brute Force'?
Thursday-WorkingHours.csv
Sample line numbers:
212523
182972
227215
15513
243050
141905
342479
350904
333539
229032
350953
316507
318956
This is a small sample of flows that I have picked up, compared to other flows in the attack category which has 30+ requests in a single flow, these flows (trace back to .pcap) consist of a single HTTP request. Not sure if it is because of botchy implementation, as according to their documentation this attack was custom written by them, but I do not think that these flows can be considered to be what their current labels are.