- SUST Home
- →
- Graduation Projects
- →
- Bachelor
- →
- Bachelor of Engineering
- →
- View Item
JavaScript is disabled for your browser. Some features of this site may not work without it.
| dc.contributor.author | Abdelhameed, AsmaaGamal Mohammad | |
| dc.contributor.author | Hussein, IsraaElsayedElbashir | |
| dc.contributor.author | Osman, Mai Ibrahim Jalal | |
| dc.contributor.author | Mohammed Nour, MiaadMahir | |
| dc.contributor.author | Supervisor, AHMED ABDALLA- | |
| dc.date.accessioned | 2017-01-16T06:54:52Z | |
| dc.date.available | 2017-01-16T06:54:52Z | |
| dc.date.issued | 2016-10-01 | |
| dc.identifier.citation | Abdelhameed, AsmaaGamal Mohammad.Design of a Hybrid Network Intrusion Detection System (A Hybrid NIDS)/AsmaaGamal Mohammad Abdelhameed...{etal};AHMED ABDALLA.-Khartoume:Sudan University of Science and Technology,College of Engineering ,2016.-18p:ill;28cm.-Bachelors search | en_US |
| dc.identifier.uri | http://repository.sustech.edu/handle/123456789/15211 | |
| dc.description | Bachelors search | en_US |
| dc.description.abstract | Network Intrusion Detection Systems (NIDSs) are widely-deployed security tools for detecting cyber-attacks and activities conducted by intruders for observing network traffic. There are two methods basis on the source of data to be analyzed in NIDSs: packet-based NIDSs and flow-based NIDSs. Packet-based NIDS has to analyze the whole payload content beside headers. In flow NIDS, rather than looking at all packets going through a network link, it looks at aggregated information of related packets of network traffic in the form of flow, so the amount of data to be analyzed is reduced.In this research, Snort -the most famous and successful NIDS- is used to detect various network attacks. The traffic which Snort worked upon is DARPA1999 benchmark dataset.Firstly, Snort was configured to detect only packet-based attacks. Then it was configured to detect both packet-based and flow-based attacks (Hybrid NIDS). The results proved the capability of Snort to detect all packet-level attacks in DARPA1999 dataset.Rest of the attacks that wasn't detected in the packet-level configuration is detectedat flow-level of the hybrid configuration. These results demonstrated the efficiency of Snort as a powerful NIDS and the efficiency of the hybrid approach to detect attacks | en_US |
| dc.description.sponsorship | Sudan University of Science and Technology | en_US |
| dc.language.iso | en | en_US |
| dc.publisher | Sudan University of Science and Technology | en_US |
| dc.subject | Intrusion Detection System | en_US |
| dc.subject | Hybrid Network | en_US |
| dc.subject | A Hybrid NIDS | en_US |
| dc.title | Design of a Hybrid Network Intrusion Detection System (A Hybrid NIDS) | en_US |
| dc.type | Thesis | en_US |
Files in this item
This item appears in the following Collection(s)
-
Bachelor of Engineering [776]
Share
