Towards a flexible packet capture analysis and reporting framework
This project produced a prototype system that could analyse and report on packet capture files generated by network telescopes. This incorporated prior research has gone into both the analysis of packet captures as well as the reporting of results. This research considers a variety of basic numeric analysis and reporting techniques in an attempt to gain a greater understanding of the requirements of the system. The design and implementation of the system was based on the need of the system to have a standardised infrastructure to allow for comparison of results between darknets. Another focus of development was to include an element of flexibility to the reporting output. The results are then considered and expanded upon using reporting output, in an attempt to better understand the packet activity captured by the dataset and represented by the reporting infrastructure.