| Abstrakt: |
Protecting our servers and machines is vital since they store our data and resources. Attackers use the latest tools and technologies to launch the attack. Among, several cyberattacks, DDoS attacks are the worst. DDoS attackers employ a variety of methods to exploit machines and consume all server resources to block authorised users. Current DDoS detection methods depend on network topology, cannot detect all types of attacks, use outdated or invalid datasets, and require powerful and expensive infrastructure hardware. In our research, we filter non-legitimate traffic and use machine learning classifiers to predict attack types from attack traffic. These two processes together reduce attack volume and identify attack type to provide a comprehensive DDoS protection and enable targeted reaction and mitigation. We used CIC DDoS 2019 data for the experiment. It records MSSQL, PortMap, LDAP, NetBIOS, Syn, UDP, UDPLag, and benign traffic attacks. Experiments yield promising and satisfying results. |
