毕业设计-基于监督学习的web入侵检测系统源码（前后端源码+数据库+使用文档）.zip

import json from django.shortcuts import render, redirect, reverse from django.core.paginator import Paginator from web.models import File,RealTimeMonitor from scapy.all import * import os import time import urllib.parse # Create your views here. ''' IDS index ''' def index(request): return render(request, 'index.html') ''' IDS index redirect ''' def indexRedirect(request): return redirect(reverse("index")) def protocol_table(request): return render(request, 'protocol_table.html') '''file upload and delete view function ''' def package_upload(request): if request.method == 'POST': if 'upload' in request.POST: try: file = request.FILES['file'] file_model = File(name=file.name, path=os.path.join('./pcapng_files', file.name)) file_model.save() destination = open(os.path.join("./pcapng_files", file.name), 'wb+') for chunk in file.chunks(): destination.write(chunk) destination.close() return render(request, 'package_upload.html', {'success_message': "上传文件成功"} ) except: return render(request, 'package_upload.html', {'error_message': "你没有选择文件"} ) elif 'delete' in request.POST: try: file_name = request.POST.get('file_name') file = File.objects.get(name=file_name) os.remove(file.path) file.delete() return render(request, 'package_upload.html', {'delete_success_message': "删除文件成功"} ) except: return render(request, 'package_upload.html', {"delete_error_message": "删除文件失败"} ) else: return render(request, 'package_upload.html') ''' protocol resolution view function ''' res, proto_res, time_res = None, None, None def protocol_resolution(request): if request.method == 'POST': try: file_name = request.POST.get('file_name') file_path = File.objects.get(name=file_name).path pcaps = rdpcap(file_path) global res, proto_res, time_res res = pcaps_analysis(pcaps) proto_res, time_res = chart(res) # 对字典排个序 time_res = sorted(time_res.items(), key=lambda x : x[0]) time_res = dict(time_res) return protocol_resolution_p(request) except: return render(request, 'protocol_resolution.html', {"error_message": "文件不存在"}) else: return render(request, 'protocol_resolution.html') '''protocol resolution paging show function''' def protocol_resolution_p(request, pIndex = 1): try: p = Paginator(res, 10) if pIndex < 1: pIndex = 1 if pIndex > p.num_pages: pIndex = p.num_pages resTen = p.page(pIndex) context = {"res": resTen, "flag": True, "pIndex": pIndex, "pagelist": p.page_range[max(0, pIndex - 3):min(pIndex + 3, p.num_pages)], "proto_data": json.dumps(proto_res), "time_data": json.dumps(time_res)} return render(request, 'protocol_resolution_p.html', context) except: return redirect(reverse("protocol_resolution")) ''' pcap file analysis main function ''' def pcaps_analysis(pcaps): res=[] for i in range(len(pcaps)): No = i + 1 ltime = time.strftime("%Y-%m-%d %H:%M:%S", time.localtime(int(pcaps[i].time))) source = '' destination = '' protocol = '' length = len(pcaps[i]) information = '' # Ethernet if pcaps[i].haslayer('Ether'): # IPv4 if pcaps[i].type == 2048: source = pcaps[i]['IP'].src destination = pcaps[i]['IP'].dst information = pcaps[i].show(dump=True) # TCP if pcaps[i].proto == 6: # HTTP if pcaps[i].sport == 80 or pcaps[i].dport == 80: if pcaps[i].haslayer('Raw'): if pcaps[i].load.find(b'HTTP') != -1 and pcaps[i]['TCP'].flags == 0x18: protocol = 'HTTP' information = pcaps[i].load.splitlines()[0].decode() else: protocol = 'TCP' else: protocol = 'TCP' # HTTPS elif pcaps[i].sport == 443 or pcaps[i].dport == 443: if pcaps[i].haslayer('Raw') and pcaps[i]['TCP'].flags == 0x18: protocol = 'TLS' else: protocol = 'TCP' else: protocol = 'UnKnown' information = "Can't analyze the pcapng packet" # UDP elif pcaps[i].proto == 17: # DNS if pcaps[i].haslayer('DNS'): protocol = 'DNS' # SSDP elif pcaps[i].sport == 1900 or pcaps[i].dport == 1900: protocol = 'SSDP' # DHCP elif pcaps[i].sport == 67 or pcaps[i].dport == 67: protocol = 'DHCP' else: protocol = 'UnKnown' information = "Can't analyze the pcapng packet" # ICMP elif pcaps[i].proto == 58: protocol = 'ICMP' else: protocol = 'UnKnown' information = "Can't analyze the pcapng packet" # IPv6 elif pcaps[i].type == 34525: source = pcaps[i]['IPv6'].src destination = pcaps[i]['IPv6'].dst information = pcaps[i].show(dump=True) # TCP if pcaps[i].nh == 6: # HTTP if pcaps[i].sport == 80 or pcaps[i].dport == 80: if pcaps[i].haslayer('Raw'): if pcaps[i].load.find(b'HTTP') != -1 and pcaps[i]['TCP'].flags == 0x18: protocol = 'HTTP' information = pcaps[i].load.splitlines()[0].decode() else: protocol = 'TCP' else: protocol = 'TCP' # HTTPS elif pcaps[i].sport == 443 or pcaps[i].dport == 443: if pcaps[i].haslayer('Raw') and pcaps[i]['TCP'].flags == 0x18: protocol = 'TLS' else: protocol = 'TCP' else: protocol = 'UnKnown' information = "Can't analyze the pcapng packet" # UDP elif pcaps[i].nh == 17: # DNS if pcaps[i].haslayer('DNS'): protocol = 'DNS' # SSDP elif pcaps[i].sport == 1900 or pcaps[i].dport == 1900: protocol = 'SSDP' # DHCP elif pcaps[i].sport == 67 or pcaps[i].dport == 67: protocol = 'DHCP' else: protocol = 'UnKnown' information