From f5545a80f95a90a5219bbb319b346f964b1e1548 Mon Sep 17 00:00:00 2001 From: Luca Deri Date: Tue, 11 Jan 2022 21:45:27 +0100 Subject: Removed legacy code --- example/intrusion_detection.h | 69 ------------------------------------------- 1 file changed, 69 deletions(-) delete mode 100644 example/intrusion_detection.h (limited to 'example/intrusion_detection.h') diff --git a/example/intrusion_detection.h b/example/intrusion_detection.h deleted file mode 100644 index 635115ac0..000000000 --- a/example/intrusion_detection.h +++ /dev/null @@ -1,69 +0,0 @@ -/* - * intrusion_detection.h - * - * Copyright (C) 2011-22 - ntop.org - * - * This file is part of nDPI, an open source deep packet inspection - * library based on the OpenDPI and PACE technology by ipoque GmbH - * - * nDPI is free software: you can redistribute it and/or modify - * it under the terms of the GNU Lesser General Public License as published by - * the Free Software Foundation, either version 3 of the License, or - * (at your option) any later version. - * - * nDPI is distributed in the hope that it will be useful, - * but WITHOUT ANY WARRANTY; without even the implied warranty of - * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the - * GNU Lesser General Public License for more details. - * - * You should have received a copy of the GNU Lesser General Public License - * along with nDPI. If not, see . - * - */ - -#ifndef _INTRUSION_DETECTION_H_ -#define _INTRUSION_DETECTION_H_ - -/* - Code to detect attacks reported in - - https://www.unb.ca/cic/datasets/ids-2017.html - https://www.unb.ca/cic/datasets/ids-2018.html -*/ - -#include -#include -#include "reader_util.h" -#include "ndpi_api.h" - -typedef struct norm_values{ - double upper_bound; - double lower_bound; - double weight; - double value; - double norm_value; -}ndpi_norm_value; - -double normalize(ndpi_norm_value* tresholds); - -double get_flow_score(ndpi_norm_value* scores, int n_metrics); - -/* ********************************** */ - -double Ddos_score(struct ndpi_flow_info* flow); - -double Dos_goldeneye_score(struct ndpi_flow_info* flow); - -double Dos_hulk_score(struct ndpi_flow_info* flow); - -double Dos_slow_score(struct ndpi_flow_info* flow); - -double Ftp_patator_score(struct ndpi_flow_info* flow); - -double Hearthbleed_score(struct ndpi_flow_info* flow); - -double Infiltration_score(struct ndpi_flow_info* flow); - -double Ssh_patator_score(struct ndpi_flow_info* flow); - -#endif /* _INTRUSION_DETECTION_H_ */ -- cgit v1.2.3