Open such-stupid6 opened 3 months ago
0xllssFF
commented
3 months ago I reviewed your work and found it very interesting. I would like to reproduce your simulated dataset by replicating your three attacks in a local environment. I would like to ask what log collection tools you used on different platforms and how the JSON files were extracted from the log files. Thank you!
Sysdig for Linux and ETW for Windows.
such-stupid6
commented
2 months ago Thank you for your response! Could you please provide the command-line parameters needed to extract the specific fields? I understand that these JSON files aren't generated by default with sysdig -j. At the same time, I would also like to know how the ETW logs are collected and how the JSON is parsed. It would be even better if you could update the README with these details. Many thanks again!
I reviewed your work and found it very interesting. I would like to reproduce your simulated dataset by replicating your three attacks in a local environment. I would like to ask what log collection tools you used on different platforms and how the JSON files were extracted from the log files. Thank you!