In this repository an unsupervised intrusion detection model has been developed.
In order to train and evaluate the model, data from the 1999 edition of the KDD challenge have been used.
.
├── Makefile
├── data # Train data
├── docs # Documentation + Notebooks
└── notebooks # Notebooks stored here
├── frozen_models # Pre trained models
├── intrusion_detection # Source code
├── mkdocs.yml
├── pyproject.toml
├── requirements.txt
└── README.mdI agree with the fact that it is weird to store notebooks inside the docs folder, however this was the quickest way to add notebooks into my mkdocs documentation.
-
Create virtual environment
make env-create
-
Activate virtual environment
source ./venv/bin/activate -
Install dependencies
make env-install
-
(During development) Update dependencies. First edit the
pyproject.tomlfile, then run:make env-update
For more info on this python environment workflow, please check my blogpost :)
After creating and activating the environment with the required dependencies installed, run from the project folder in a terminal shell:
python intrusion_detection/train.py \
--data_path=DATA_PATH \
--header_file=HEADER_FILE \
--output_model_file=OUTPUT_MODEL_FILEThis script will load training data from the files DATA_PATH and HEADER_FILE, will train a model and it will save it at the destination OUTPUT_MODEL_FILE
After creating and activating the environment with the required dependencies installed, run from the project folder in a terminal shell:
python intrusion_detection/predict.py \
--data_path=DATA_PATH \
--header_file=HEADER_FILE \
--model_file=MODEL_FILE \
--predictions_file=PREDICTIONS_FILEThis script will load the data to score from the files DATA_PATH and HEADER_FILE, it will load the pre-trained model saved at the location MODEL_FILE, ultimately it will score data using the model file and store predictions at the location PREDICTIONS_FILE in CSV format.
More information on how the model was developed available Here.