User Guide
Step-by-step instructions on how to analyze your PCAP files and get security recommendations.
Upload PCAP File
Begin by uploading the network traffic capture file you wish to analyze.
- Go to the Home Page.
- Drag and drop your file into the designated area or click to browse.
- Supported Formats:
.pcap and .pcapng.
- Maximum Size: 150MB. (A warning popup will appear if the file size exceeds this limit)
Analyze Network Traffic
Once the file is selected, initiate the analysis process.
- Click the "Analyze Network Traffic" button.
- Wait for the system to process the file. This involves packet extraction, feature engineering, and Random Forest classification.
- A loading spinner will indicate that the analysis is in progress.
View Dashboard Results
After analysis is complete, you will be automatically redirected to the Dashboard.
- Attack Summary: Check the "Total Attacks" and "Blocked Attacks" cards.
- Visualizations: Explore charts for Attack Timeline, Attack Types, and Severity Levels.
- Network Details: Review Top Source IPs, Destination IPs, and Protocol Distribution.
- Packet Table: Inspect the detailed table of processed packets and their flags.
Get Security Recommendations (Gemini AI)
Leverage Artificial Intelligence to get actionable security advice based on the specific threats detected in your file.
- On the Dashboard, locate the "Analysis Results" card at the top.
- Click the Security Recommendation (AI) button.
- The system will send the analysis summary to Gemini AI.
- A popup will appear displaying tailored recommendations to mitigate the detected attacks (e.g., firewall rules, configuration changes).