To request access this dataset you will need to login with an IMPACT account. Accounts are free. If you don't have one please register.
GT Malware Netflow Daily Feed 2018
This dataset contains a daily feed of network flow data produced by the Georgia Tech Information Security Center's malware analysis system. Metadata included with the feed associates each body of netflow with a specific suspect Windows executable, which is run in a sterile, isolated environment, with controlled access to the Internet, for a short period of time. Each sample's full network activity is recorded, distilled using nfcapd, and the resulting netflow information made available.
This feed is structured as a set of archives that each correspond to a single day of sample processing-based netflow data. Each archive decompresses to a top-level folder containing files that are named according to the MD5 of the sample that generated them.
This dataset is the subject of ongoing measurement and data collection. As such the data is continuously growing. Researchers who are granted access will be able to download updates for a period of one year after their request.
Size is growing as more data is collected
2018, tech, georgia, feed, netflow, daily, malware, gt, 1143, gt malware netflow daily feed 2018, georgia tech, sample, network, flow, included, executable, center, associates, distilled, security, structured, top, suspect, specific, windows, traffic flow data, controlled, single, environment, short, time, dataset, md5, analysis, named, nfcapd, body, correspond, generated, day, traffic, based, period, level, archive, decompresses, produced, system, folder, sterile, processing, files, metadata, archives, access, activity, isolated