Pattern Matching Lab

Pattern matching is used throughout IT for a multitude of reasons and can be used to identify transit or at rest data. Pattern matching can lead to the classification of data, which can cause problems, as in the case of a false positive. Where you have wrongly classified data based on a particular pattern but the data belongs to another class. In t...

Time
1 hour 30 minutes
Difficulty
Beginner
Share
NEED TO TRAIN YOUR TEAM? LEARN MORE
Join over 3 million cybersecurity professionals advancing their career
Sign up with
Required fields are marked with an *
or
Sign up with Google
Sign up with Apple
Sign up with Microsoft
View all SSO options

Already have an account? Sign In »

Overview

Pattern matching is used throughout IT for a multitude of reasons and can be used to identify transit or at rest data. Pattern matching can lead to the classification of data, which can cause problems, as in the case of a false positive. Where you have wrongly classified data based on a particular pattern but the data belongs to another class. In this lab, we are going to use the kddcup.data.corrected dataset, which contains traffic flows captured by TCPDUMP. We will use the Python programming language to detect patterns in the said dataset. We will illustrate how a false positive can occur, and we will also demonstrate how a Python program can be used to detect this error. Lastly, we will correct the error by altering the pattern within our program and verify that there are no more false positives.

Learning Partner
Infosec Learning

Infosec Learning provides businesses, colleges, governments, and K-12 school districts a feature rich information technology training and skill assessment service via an advanced, cloud based, virtual machine powered platform, capable of significant customization with unlimited scale and growth potential.

Similar Content
Create Files from Parts of Other Files
Learn on Demand IT Pro Challenges
Create Files from Parts of Other Files
In this IT Pro Challenge virtual lab, you will learn how to use basic Linux ...
How to Use NGrep (BSWJ)
Course
How to Use NGrep (BSWJ)
4.67
Network Grep (NGREP) is a useful network analysis tool which performs operations based upon the ...
Intermediate SQL
Course
Intermediate SQL
5
Ready to dive into SQL queries, aggregations, events, and database schemas? In our Intermediate SQL ...
10CEUs