/cicflowmeter

This is a Python version of CICFlowmeter-V4.0 (formerly known as ISCXFlowMeter) - an Ethernet traffic Bi-flow generator and analyzer for anomaly detection.

Primary LanguagePythonMIT LicenseMIT

Python CICFlowMeter

This project is cloned from Python Wrapper CICflowmeter and customized to fit my need. Therefore, it is not maintained actively. If there are any problems, please create an issue or a pull request.

Installation

git clone https://github.com/datthinh1801/cicflowmeter.git
cd cicflowmeter
python3 setup.py install

Usage

usage: cicflowmeter [-h] (-i INPUT_INTERFACE | -f INPUT_FILE) [-c] [-u URL_MODEL] output

positional arguments:
  output                output file name (in flow mode) or directory (in sequence mode)

optional arguments:
  -h, --help            show this help message and exit
  -i INPUT_INTERFACE    capture online data from INPUT_INTERFACE
  -f INPUT_FILE         capture offline data from INPUT_FILE
  -c, --csv, --flow     output flows as csv

Convert pcap file to flow csv:

cicflowmeter -f example.pcap -c flows.csv

Sniff packets real-time from interface to flow csv: (need root permission)

cicflowmeter -i eth0 -c flows.csv