What is NetworkAnomalyCatcher? - Julssss/NetworkAnomalyCatcher GitHub Wiki

It is a program the main task of which is to do analyzes of some of the most effective anomaly detection methods by simulating network traffic with specified parameters.

Intrusion detection refers to a broad approaches that detect malicious attacks on computers and networks. Generally speaking, these approaches can be categorized into misuse detection and anomaly detection.

Network-based misuse detection works by comparing network traffic to known attack patterns called signatures. While misuse detectors can be quite successful in preventing attacks with known signatures, they cannot detect previously unseened attack, and sometimes fail to detect slight modifications to existing attacks.

NetworkAnomalyCatcher based on another technology named anomaly detection. Anomaly detection approaches eliminates the main disadvantage of misuse detection methods - they can detect unknown attacks.

NetworkAnomalyCatcher allows you to analyze them on imitating network traffic to choose one the most suitable for certain circumstances.