In [12]:
import csv
import random
import time
from datetime import datetime, timedelta

# Define some constants and sample data
PROTOCOLS = ['TCP', 'UDP', 'ICMP']
PORTS = [80, 443, 53, 22, 8080, 3306, 123]
THREATS = ['none', 'malware', 'phishing', 'ransomware', 'ddos']

# Additional fields for richer logs
USER_AGENTS = [
    'Mozilla/5.0', 'curl/7.68.0', 'PostmanRuntime/7.28.4', 'Python-urllib/3.8', 'Wget/1.20.3'
]

LOCATIONS = [
    'US', 'DE', 'FR', 'CN', 'RU', 'IN', 'BR', 'ZA', 'AU', 'CA'
]

def random_ip():
    return '.'.join(str(random.randint(1, 254)) for _ in range(4))

def generate_log_entry(current_time):
    entry = {
        'timestamp': current_time.strftime('%Y-%m-%d %H:%M:%S'),
        'source_ip': random_ip(),
        'destination_ip': random_ip(),
        'protocol': random.choice(PROTOCOLS),
        'port': random.choice(PORTS),
        'threat': random.choices(THREATS, weights=[85, 5, 3, 5, 2])[0],  # Most are 'none'
        'user_agent': random.choice(USER_AGENTS),
        'location': random.choice(LOCATIONS),
        'bytes_sent': random.randint(100, 5000),
        'bytes_received': random.randint(100, 5000)
    }
    return entry

def generate_logs(filename='logs_2.csv', total_logs=100, burst_chance=0.05, burst_multiplier=10):
    fieldnames = ['timestamp', 'source_ip', 'destination_ip', 'protocol', 'port', 'threat',
                  'user_agent', 'location', 'bytes_sent', 'bytes_received']

    start_time = datetime.now()

    with open(filename, mode='w', newline='') as csvfile:
        writer = csv.DictWriter(csvfile, fieldnames=fieldnames)
        writer.writeheader()

        current_time = start_time
        count = 0

        while count < total_logs:
            # Simulate burst with a small chance
            if random.random() < burst_chance:
                burst_size = random.randint(5, 15) * burst_multiplier
                for _ in range(burst_size):
                    log = generate_log_entry(current_time)
                    writer.writerow(log)
                    count += 1
                    current_time += timedelta(seconds=1)
                    if count >= total_logs:
                        break
            else:
                log = generate_log_entry(current_time)
                writer.writerow(log)
                count += 1
                current_time += timedelta(seconds=1)

    print(f"Generated {count} log entries to {filename}")

if __name__ == "__main__":
    generate_logs(total_logs=100)

Generated 100 log entries to logs_2.csv
