网络威胁日志数据集

网络威胁日志数据集包含原始网络威胁日志数据及分析结果数据。其中，网络威胁日志数据是 2021 年 1 月至 2021 年 9 月期间在中国科学技术大学西区生成的包含防火墙、入侵防御系统、防病毒系统 产生 3 种安全检测设备的真实告警日志数据。每条告警日志包含日志生成的时间、目的 IP、端口号、对应告警事件名等信息。分析结果数 据是利用以上数据在网络攻击检测试验中取得的结果数据，包括准确 度，精度，召回率等。采集设备包括防火墙、入侵防御系统、防病毒 系统、服务器等，数据类型是文件，共计 1GB。

This cyber threat log dataset contains raw cyber threat log data and corresponding analysis result data. The raw cyber threat log data consists of real alarm logs generated from three types of security detection devices—firewalls, intrusion prevention systems, and antivirus systems—collected in the west campus of the University of Science and Technology of China between January and September 2021. Each alarm log includes information such as the log generation timestamp, destination IP address, port number, and the corresponding alarm event name. The analysis result data is the outcome derived from network attack detection experiments using the aforementioned raw log data, covering evaluation metrics including accuracy, precision, and recall. The data collection devices involve firewalls, intrusion prevention systems, antivirus systems, servers, etc. The dataset is stored as files with a total size of 1GB.