Finding Network Anomalies with Advanced Statistics presented at ToorCamp 2014

by M33p ,

Summary : Have you ever tried analyzing your network data using mean & standard deviation? Have you ever noticed how much it sucks? Or how inaccurate it can be? Or how hard it can be to use?
This presentation explores the idea of statistical anomaly detection and brings it to the next level. Multiple statistical methods of analyzing network traffic will be presented, showing how they perform in a realistic environment. The goal of this talk is to get people thinking about new ways of analyzing network data, and get us out of the stone age of standard deviation.