packet capture 中文意思是什麼
packet capture
解釋
包捕獲-
The intrusion detection system chooses the misuse detection technology. the main content of the paper is divided into four sections : section 1 mainly explores the windows network architectonics, analyzed the program of ndis, and introduced the main network data capture schema of lower layer ; then introduced the mechanism of packet capture and filter, and analyzed the framework of winpcap in capture and filter packet on the bases of former work
本論文主要包括四個方面:第一部分主要分析了windows的網路體系結構,剖析了網路驅動介面規范( ndis )的編程,介紹了低層網路數據的主要的捕獲方案:然後介紹了包捕獲和過濾機制;最後在前兩者的基礎上,分析了本系統開發用工具winpcap數據包捕獲和過濾的的結構。 -
According the cidf pattern, the system was divided into five fundamental modules : packet capture, network sniffer, rules disposal, data analyze and system reaction. each module mapp ed to different applications and the system function was introduced in brief
根據cidf入侵檢測模型,將系統分為五個基本模塊:數據捕獲、網路監聽、規則處理、數據分析和系統響應模塊,分別對應于不同的應用功能;並對目前開發的系統功能做了簡單的介紹。 -
This solutions includes adopting the ndis protocol driver as packet capture module, the kpf filter as packet filter which came from the revising and improving of the bpf filter, hypercuts with rule updating ability as packet classification algorithm.
該方案包括以ndis協議驅動程序實現報文捕獲、以對bpf過濾器改進和增強后的kpf為報文過濾器,以增加了規則更新能力的hypercuts演算法為報文分類演算法。 -
This thesis firstly analyzed the significance of the research of the network flow monitoring, and carefully researches the mode of real - time network flow measurement. basing on those studies, this thesis summarizes three key problems : high - speed network packet capture technology 、 packet filter technology and multidimensional packet classification algorithm respectively. after that, the thesis focuses on the solutions to the three problems
本文首先分析了從事網路流量監測研究的現實意義,並仔細研究了rtfm實時網路流量測量模型,在此基礎上,歸結出了實現一個高性能的測量器將遇到的三個關鍵問題,即高速報文捕獲技術、報文過濾器實現技術和多維報文分類演算法。 -
Packet capture mode lets you collect specific data about lan traffic by filtering packets by station mac addressip address, groups of stations or error condition on your lan segment
通過選擇特定的協議、子協議或與臺站地址,過濾相關聯的使用者所定義的偏移過濾,以便進一步隔離。此外, -
After analyzing the distribution of most attack packet size and the distribution of small packet percentage in normal datasets, a based on small packet threshold adaptive sampling method is proposed to promote the capacity of capturing attack packets. sampling strategy adjusts automatically according to the variation of small packet in order to capture more attack packets
為了提高攻擊報文的捕獲性能,在分析了攻擊報文大小分佈和小報文在正常數據中的比例分佈的基礎上,本文提出了基於小報文閾值的自適應采樣演算法,監測小報文的變化情況動態地調整采樣策略,更多地捕獲攻擊報文,為後期的分析和處理打下良好的基礎。 -
The filter in bpf was implemented by a pseudo machine, which consists of an accumulator, an index register, a scratch memory store, and an implicit program counter. bpf can be directly programmed via ioctl system call and the pseudo machine instruction set, it can also be programmed by using libpcap function library, which can access many kinds of packet capture facilities provided by oses ( bpf is the important one in them )
Bpf的過濾器是由假想的過濾器虛擬機實現的,對bpf的編程,可以通過ioctl系統調用和過濾器虛擬機的指令集來直接編程,也可以通過libpcap提供的庫函數來編程,它能訪問許多種操作系統內核提供的包過濾設施( bpf是其中重要的一種) 。 -
This dnids is composed of four parts : ldu, smu, gau and mcu. finally, the author studies the technology of nids in linux including the intrusion technology and system design. brings forward a integrated frame of a dnids, it concludes the following modules : network packet capture module, network protocol analysis module, rules analysis module, etc
最後在linux平臺下分析研究了基於網路的入侵檢測技術及其系統設計,提出了一個結構完整的入侵檢測系統框架,主要包括的模塊有:網路數據包捕獲模塊、網路協議解析模塊、規則解析模塊、決策模塊、響應模塊、通信模塊、存儲模塊、互動介面和界面管理模塊。 -
Packet capture displays show total traffic, captured traffic and dropped packets ( if any )
捕獲。分組捕獲顯示整體話務、所捕獲的話務和丟失的包(如果有) 。 -
Observer offers complete packet capture at wire speeds up to 100mb ethernet, and gigabit capture via a switch s span port
以太網的完整分組捕獲,以及經由交換機間距埠的 -
The most important way is that the attack packet is collected to analyses and log through the packet capture mechanism
然後,利用數據包捕獲機制對攻擊數據進行了收集、分析和記錄。 -
Switched modes see all ports on a switch gathering statistics from the entire switch or packet capture from any port or ports
交換模式可看到交換機中的所有埠,從整個交換機或任何埠的分組捕獲收集統計; -
Network engineers used advanced packet capture and filtered on specific words and text strings to confirm suspicions
網路工程師使用了先進的數據包捕獲,對特定詞匯及文本字元串進行過濾,來確認懷疑是否屬實。 -
Providing interface for users, so they can monitor packet, inquire about log, manage control rules, set system settings, set user access of network, set network neighborhood, set web site, set access time. application and driver capture and filter packet in the internet. the firewall can record and display the log of accesses, store and display the control rules, and monitor accesses in real time
對提供用戶界面進行封包監視、日誌查詢、控管規則的管理、系統設置、訪問網路的設置、網上鄰居的設置、網站設置和訪問時間的設置的顯示;應用層封包截獲和過濾;驅動層封包截獲和過濾;訪問動作的日誌記錄和控管規則的存儲和顯示;設置控管規則、訪問時間、訪問網路、網上鄰居、網站和系統設置;實時監控等六個功能進行了建模開發。 -
In order to realize network contents ncccss control, the main technical task is to capture user ' s requirement data packet and to filter the desired ip by using access specification
在系統的設計與實現中需要解決的最重要的技術問題是用戶請求數據包的截獲和ip地址可訪問性判定問題。 -
The system capture the network packet with the help of winpcap, then analysis the packet, mainly analysis ip, tcp, udp and icmp protocol, and then display the data and store the data into the logs that may be analysed anon. and i design a intrusion detection language, and realize a intrusion detection database. after the network packet was captured, it match the packet
其主要流程是數據包捕獲模塊運用winpcap抓取網路數據包,然後對數據包進行協議分析,主要分析了ip , tcp , udp , icmp協議,並且按照數據包的協議類型顯示數據,並把數據記錄在日誌文件中供以後分析使用,同時設計了一個簡單的入侵描述語言,根據該語言的規則建立了一個入侵特徵數據庫,讓已抓獲的數據包與入侵特徵數據庫中的規則進行匹配,如果匹配成功,則說明有異常行為發生,否則,則說明行為正常。
分享友人