-
Notifications
You must be signed in to change notification settings - Fork 1
/
Copy pathdataset.py
132 lines (124 loc) · 3.79 KB
/
dataset.py
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
import pandas as pd
# 크립토재킹하는 컨테이너 시스템 콜 상위 20개 조사해서 빈도수 확인하기 위해 시스템콜 리스트 뽑기
# 첫 번째 파일의 데이터
bytecoin = {
"sys_enter_recvmsg": 129799,
"sys_enter_futex": 126108,
"sys_enter_pwrite64": 104156,
"sys_enter_read": 91662,
"sys_enter_poll": 91320,
"sys_enter_write": 74880,
"sys_enter_epoll_wait": 55411,
"sys_enter_ioctl": 53398,
"sys_enter_mprotect": 39625,
"sys_enter_newfstatat": 39528,
"sys_enter_madvise": 38342,
"sys_enter_lseek": 36673,
"sys_enter_splice": 36073,
"sys_enter_writev": 32235,
"sys_enter_close": 29258,
"sys_enter_openat": 28827,
"sys_enter_clock_nanosleep": 23512,
"sys_enter_sendmsg": 22506,
"sys_enter_mmap": 21383,
"sys_enter_epoll_pwait": 14512,
}
# 두 번째 파일의 데이터
dashcoin = {
"sys_enter_read": 118408,
"sys_enter_futex": 102676,
"sys_enter_poll": 56293,
"sys_enter_close": 53341,
"sys_enter_recvmsg": 51815,
"sys_enter_epoll_pwait": 48565,
"sys_enter_write": 48563,
"sys_enter_newfstatat": 42254,
"sys_enter_openat": 41962,
"sys_enter_rt_sigaction": 36809,
"sys_enter_madvise": 35712,
"sys_enter_ioctl": 32717,
"sys_enter_mmap": 29287,
"sys_enter_fcntl": 25340,
"sys_enter_rt_sigprocmask": 24797,
"sys_enter_mprotect": 23470,
"sys_enter_nanosleep": 19658,
"sys_enter_splice": 19315,
"sys_enter_newstat": 16640,
"sys_enter_clock_nanosleep": 11832,
}
dogecoin = {
"sys_enter_times": 52256,
"sys_enter_ioctl": 43440,
"sys_enter_epoll_pwait": 21573,
"sys_enter_poll": 15540,
"sys_enter_read": 14222,
"sys_enter_recvmsg": 13918,
"sys_enter_futex": 13116,
"sys_enter_newfstatat": 8174,
"sys_enter_close": 7935,
"sys_enter_openat": 6453,
"sys_enter_inotify_add_watch": 5700,
"sys_enter_nanosleep": 4377,
"sys_enter_epoll_wait": 3822,
"sys_enter_gettid": 3223,
"sys_enter_timerfd_settime": 2839,
"sys_enter_readlink": 2186,
"sys_enter_madvise": 2010,
"sys_enter_socket": 1583,
"sys_enter_sched_yield": 1481,
"sys_enter_write": 1310,
}
monero = {
"sys_enter_sched_yield": 185332,
"sys_enter_times": 51812,
"sys_enter_ioctl": 47491,
"sys_enter_poll": 31957,
"sys_enter_read": 30262,
"sys_enter_recvmsg": 20939,
"sys_enter_newfstatat": 15059,
"sys_enter_close": 13984,
"sys_enter_openat": 13349,
"sys_enter_write": 11754,
"sys_enter_futex": 8947,
"sys_enter_epoll_pwait": 6529,
"sys_enter_epoll_wait": 5114,
"sys_enter_inotify_add_watch": 5102,
"sys_enter_nanosleep": 3385,
"sys_enter_gettid": 3266,
"sys_enter_sendmsg": 3240,
"sys_enter_timerfd_settime": 2845,
"sys_enter_access": 2389,
"sys_enter_readlink": 2187,
}
nimiq = {
"sys_enter_futex": 421807,
"sys_enter_newfstatat": 67580,
"sys_enter_read": 56384,
"sys_enter_times": 51654,
"sys_enter_ioctl": 48991,
"sys_enter_close": 23054,
"sys_enter_sched_yield": 22088,
"sys_enter_epoll_wait": 21382,
"sys_enter_openat": 16509,
"sys_enter_mprotect": 16268,
"sys_enter_poll": 15726,
"sys_enter_rt_sigaction": 13059,
"sys_enter_lseek": 12873,
"sys_enter_munmap": 12491,
"sys_enter_write": 11721,
"sys_enter_mmap": 11080,
"sys_enter_recvmsg": 8193,
"sys_enter_getdents64": 5182,
"sys_enter_inotify_add_watch": 5066,
"sys_enter_epoll_pwait": 3974,
}
# 데이터프레임 생성
df1 = pd.DataFrame([bytecoin])
df2 = pd.DataFrame([dashcoin])
df3 = pd.DataFrame([dogecoin])
df4 = pd.DataFrame([monero])
df5 = pd.DataFrame([nimiq])
# 데이터프레임 결합
combined_df = pd.concat([df3, df4, df5], ignore_index=True)
# CSV 파일로 저장
combined_df.to_csv("combined_syscalls.csv", index=False)