Skip to content

aalsabeh/P4-DGA

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

17 Commits
Control plane
Control plane
 
 
ML
ML
 
 
Paper
Paper
 
 
.DS_Store
.DS_Store
 
 
DGA.p4
DGA.p4
 
 
README.md
README.md
 
 

Repository files navigation

P4-DGA

Source code for the paper "On DGA Detection and Classification using P4 Programmable Switches"

P4-DGA

Files and their description:

  • DGA.p4 : P4 program for parsing domain names, extracting the features, and running the random forest classifier that detects DGAs. The code runs on Intel Tofino chipset and the SDE version is 9.2
  • Control plane directory: contains the control plane program that:
    • Populates the data plane with the bigram frequency values and other rule entries
    • Reads the features from the data plane via message digests
    • Can interface with another program that runs the ML models to enhance the detection, and perform classification of the DGAs
  • ML directory: contains datasets used in the paper under the directory "Datasets". Also, the jupyter notebook "ML.ipynb" contains the classifier that loads the data, performs detection and classification, and reports the accuracies. It is run on a CPU Windows machine.

About

P4-DGA

Resources

Readme
Activity

Stars

1 star

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages