So, essentially, we are to code a PCAP analyzer. It should return simple information about the PCAP file.

Here is the full description:

Summary: You are given a darknet dataset representing one day of unsolicited Internet traffic The aim of the project is to build a cyber security capability that permits the inference (i.e., detection) and attribution of DDos flooding attacks by analyzing the darknet IP space. A complete project necessitates the development of a simplistic back-end and a front-end The back-end (1) aims at analyzing the dataset to infer sources of lP addresses which are related to DDoS flooding. The back-end should also (2) infer the type of the DDoS flooding (TCP Flooding, UDP Flooding or ICMP Flooding) and the rate (packets/sec) of the attack. The front-end will (1) geo-locate those DDoS source IP addresses to infer the city, the country and the Internet Service Provider (ISP) where the DDos is originating from. The front-end will also (2) have to display those DDoSIP addresses on a world map Summary: You are given a darknet dataset representing one day of unsolicited Internet traffic The aim of the project is to build a cyber security capability that permits the inference (i.e., detection) and attribution of DDos flooding attacks by analyzing the darknet IP space. A complete project necessitates the development of a simplistic back-end and a front-end The back-end (1) aims at analyzing the dataset to infer sources of lP addresses which are related to DDoS flooding. The back-end should also (2) infer the type of the DDoS flooding (TCP Flooding, UDP Flooding or ICMP Flooding) and the rate (packets/sec) of the attack. The front-end will (1) geo-locate those DDoS source IP addresses to infer the city, the country and the Internet Service Provider (ISP) where the DDos is originating from. The front-end will also (2) have to display those DDoSIP addresses on a world map