A naive implementation of HERCULE, an attack story reconstruction system using community discovery on correlated log graph.
Now I have implemented HERCULE's key function -- social network detection using louvain method(use python-louvain package). The platform directory contains the main source code and some utilities.
The dataset I use is SJTU's TCP/UDP connection logs
This is a SJTU PRP project guided by Prof. Futai Zou
Reference Article: HERCULE: Attack Story Reconstruction via Community Discovery on Correlated Log Graph