Skip to content

Commit

Permalink
Browse files Browse the repository at this point in the history
Added cert features
  • Loading branch information
aaron-tuor committed Jan 17, 2018
1 parent 03a68c5 commit 43beec1
Show file tree
Hide file tree
Showing 3 changed files with 40 additions and 1 deletion.
1 change: 1 addition & 0 deletions .gitattributes
@@ -0,0 +1 @@
*.bz2 filter=lfs diff=lfs merge=lfs -text
37 changes: 36 additions & 1 deletion docs/cert_feats.rst
Expand Up @@ -4,4 +4,39 @@ CERT Features
Aggregate Features
------------------

CERT aggregate features can be obtained by emailing the authors.
CERT aggregate features are in the compressed file:

cert_aggregate_features.tar.bz2

They were made according to the specifications in the Paper **Deep Learning for Unsupervised Insider Threat Detection in Structured Cybersecurity Data Streams**.
These should be used in conjunction with dnn_agg.py and lstm_agg.py. These are pretty big so will take a while to uncompress.

Example usage:

.. code-block:: bash
$ tar -xjvf safekit/safekit/features/cert/cert_aggregate_features.tar.bz2
$ cd safekit/safekit/models/
$ python dnn_agg.py safekit/safekit/features/cert/cert_aggregate_features.txt output.txt ../features/specs/agg/cert_all_in_all_out_agg.json -skipheader
$ python dnn_agg.py safekit/safekit/features/cert/cert_aggregate_features.txt output.txt ../features/specs/agg/cert_all_in_all_out_agg.json -skipheader
Our legal department wants this included:

This material was prepared as an account of work sponsored by an agency of the United States Government.
Neither the United States Government nor the United States Department of Energy, nor Battelle, nor any of their employees,
nor any jurisdiction or organization that has cooperated in the development of these materials,
makes any warranty, express or implied, or assumes any legal liability or responsibility for the accuracy, completeness,
or usefulness or any information, apparatus, product, software, or process disclosed, or represents that its use would not infringe privately owned rights.

Reference herein to any specific commercial product, process, or service by trade name, trademark, manufacturer,
or otherwise does not necessarily constitute or imply its endorsement, recommendation,
or favoring by the United States Government or any agency thereof, or Battelle Memorial Institute.
The views and opinions of authors expressed herein do not necessarily state or reflect those of the United States Government or any agency thereof.

PACIFIC NORTHWEST NATIONAL LABORATORY
operated by
BATTELLE
for the
UNITED STATES DEPARTMENT OF ENERGY
under Contract DE-AC05-76RL01830
3 changes: 3 additions & 0 deletions safekit/features/cert/cert_aggregate_features.tar.bz2
Git LFS file not shown

1 comment on commit 43beec1

@springfall2018
Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

cert_aggregate_features.tar.bz2 is damaged and corrupted. I really need this file to understand your paper. can you help?

Please sign in to comment.