Abstract:
The use of packet based NIDS is expensive because each packet must be inspected deeply.This research provides solution for discovering network attacks in efficient manner using flow based network intrusion detection system. The designed system closely monitors the internet traffic based on some time-based aggregated traffic (TAT) features to determine existence of brute-force attack.These TAT features are extracted from a previously dataset of NetFlow records using a C code program. The designed system provides a property of discovering attacks with undefined signature (unknown attacks).The obtained result shows reduction in false alarm and high level security provided by this system
