{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,6,15]],"date-time":"2026-06-15T15:27:42Z","timestamp":1781537262111,"version":"3.54.5"},"reference-count":24,"publisher":"MDPI AG","issue":"5","license":[{"start":{"date-parts":[[2025,4,25]],"date-time":"2025-04-25T00:00:00Z","timestamp":1745539200000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/creativecommons.org\/licenses\/by\/4.0\/"}],"funder":[{"name":"2021 NCAE-C-002: Cyber Research Innovation Grant Program","award":["H98230-21-1-0170"],"award-info":[{"award-number":["H98230-21-1-0170"]}]},{"name":"Askew Institute at the University of West Florida","award":["H98230-21-1-0170"],"award-info":[{"award-number":["H98230-21-1-0170"]}]}],"content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":["Data"],"abstract":"<jats:p>This paper describes the creation of a new dataset, UWF-ZeekData24, aligned with the Enterprise MITRE ATT&amp;CK Framework, that addresses critical shortcomings in existing network security datasets. Controlling the construction of attacks and meticulously labeling the data provides a more accurate and dynamic environment for testing of IDS\/IPS systems and their machine learning algorithms. The outcomes of this research will assist in the development of cybersecurity solutions as well as increase the robustness and adaptability towards modern day cybersecurity threats. This new carefully engineered dataset will enhance cyber defense mechanisms that are responsible for safeguarding critical infrastructures and digital assets. Finally, this paper discusses the differences between crowd-sourced data and data collected in a more controlled environment.<\/jats:p>","DOI":"10.3390\/data10050059","type":"journal-article","created":{"date-parts":[[2025,4,25]],"date-time":"2025-04-25T08:02:57Z","timestamp":1745568177000},"page":"59","update-policy":"https:\/\/doi.org\/10.3390\/mdpi_crossmark_policy","source":"Crossref","is-referenced-by-count":9,"title":["Introducing UWF-ZeekData24: An Enterprise MITRE ATT&amp;CK Labeled Network Attack Traffic Dataset for Machine Learning\/AI"],"prefix":"10.3390","volume":"10","author":[{"given":"Marshall","family":"Elam","sequence":"first","affiliation":[{"name":"Department of Computer Science, The University of West Florida, Pensacola, FL 32514, USA"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"ORCID":"https:\/\/orcid.org\/0000-0003-0106-3890","authenticated-orcid":false,"given":"Dustin","family":"Mink","sequence":"additional","affiliation":[{"name":"Department of Cybersecurity, The University of West Florida, Pensacola, FL 32514, USA"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"ORCID":"https:\/\/orcid.org\/0000-0002-1886-4582","authenticated-orcid":false,"given":"Sikha S.","family":"Bagui","sequence":"additional","affiliation":[{"name":"Department of Computer Science, The University of West Florida, Pensacola, FL 32514, USA"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"given":"Russell","family":"Plenkers","sequence":"additional","affiliation":[{"name":"Department of Computer Science, The University of West Florida, Pensacola, FL 32514, USA"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"ORCID":"https:\/\/orcid.org\/0000-0001-6140-5384","authenticated-orcid":false,"given":"Subhash C.","family":"Bagui","sequence":"additional","affiliation":[{"name":"Department of Mathematics and Statistics, The University of West Florida, Pensacola, FL 32514, USA"}],"role":[{"vocabulary":"crossref","role":"author"}]}],"member":"1968","published-online":{"date-parts":[[2025,4,25]]},"reference":[{"key":"ref_1","unstructured":"(2024, September 19). MITRE ATT&CK. Available online: https:\/\/attack.mitre.org\/."},{"key":"ref_2","unstructured":"(2024, September 16). About Zeek\u2014Book of Zeek. Available online: https:\/\/docs.zeek.org\/en\/master\/about.html."},{"key":"ref_3","doi-asserted-by":"crossref","unstructured":"Bagui, S.S., Mink, D., Bagui, S.C., Ghosh, T., Plenkers, R., McElroy, T., Dulaney, S., and Shabanali, S. (2023). Introducing UWF-ZeekData22: A Comprehensive Network Traffic Dataset Based on the MITRE ATT&CK Framework. Data, 8.","DOI":"10.3390\/data8010018"},{"key":"ref_4","unstructured":"(2024, September 03). KDD Cup 1999. Available online: http:\/\/kdd.ics.uci.edu\/databases\/kddcup99\/kddcup99.html."},{"key":"ref_5","doi-asserted-by":"crossref","unstructured":"Tavallaee, M., Bagheri, E., Lu, W., and Ghorbani, A. (2009, January 8\u201310). A detailed analysis of the KDD CUP 99 data set. Proceedings of the Second IEEE Symposium on Computational Intelligence for Security and Defence Applications, Ottawa, ON, Canada. Available online: https:\/\/ieeexplore.ieee.org\/document\/5356528.","DOI":"10.1109\/CISDA.2009.5356528"},{"key":"ref_6","doi-asserted-by":"crossref","unstructured":"Moustafa, N., and Slay, J. (2015, January 10\u201312). UNSW-NB15: A Comprehensive Data Set for Network Intrusion Detection Systems. Proceedings of the Military Communications and Information Systems Conference (MilCIS), Canberra, ACT, Australia. Available online: https:\/\/ieee-dataport.org\/documents\/unswnb15-dataset.","DOI":"10.1109\/MilCIS.2015.7348942"},{"key":"ref_7","doi-asserted-by":"crossref","first-page":"411","DOI":"10.1016\/j.cose.2017.11.004","article-title":"UGR\u201916: A New Dataset for the Evaluation of Cyclostationarity-Based Network IDSs","volume":"73","author":"Camacho","year":"2018","journal-title":"Comput. Secur."},{"key":"ref_8","doi-asserted-by":"crossref","unstructured":"Sharafaldin, I., Habibi Lashkari, A., and Ghorbani, A.A. (2018). A Detailed Analysis of the CICIDS2017 Data Set. ICISSP, Springer. Available online: https:\/\/www.unb.ca\/cic\/datasets\/ids-2017.html.","DOI":"10.1007\/978-3-030-25109-3_9"},{"key":"ref_9","doi-asserted-by":"crossref","first-page":"485","DOI":"10.1109\/JIOT.2021.3085194","article-title":"ToN_IoT: The Role of Heterogeneity and the Need for Standardization of Features and Attack Types in IoT Network Intrusion Data Sets","volume":"9","author":"Booij","year":"2022","journal-title":"IEEE Internet Things J."},{"key":"ref_10","doi-asserted-by":"crossref","unstructured":"Neto, E.C.P., Dadkhah, S., Ferreira, R., Zohourian, A., Lu, R., and Ghorbani, A.A. (2023). CICIoT2023: A Real-Time Dataset and Benchmark for Large-Scale Attacks in IoT Environment. Sensors, 23.","DOI":"10.20944\/preprints202305.0443.v1"},{"key":"ref_11","unstructured":"(2024, August 03). Available online: https:\/\/datasets.uwf.edu\/."},{"key":"ref_12","unstructured":"(2023, August 03). Kali Linux | Penetration Testing and Ethical Hacking Linux Distribution. Available online: https:\/\/www.kali.org\/."},{"key":"ref_13","unstructured":"pfSense Documentation (2024, August 09). Netgate. Available online: https:\/\/docs.netgate.com\/pfsense\/en\/latest\/."},{"key":"ref_14","unstructured":"(2024, September 06). Metasploit. Available online: https:\/\/www.rapid7.com\/products\/metasploit\/resources\/."},{"key":"ref_15","unstructured":"(2024, August 03). Security Onion Solutions. Available online: https:\/\/securityonionsolutions.com\/."},{"key":"ref_16","unstructured":"(2024, August 09). Project Jupyter | Home. Available online: https:\/\/jupyter.org\/."},{"key":"ref_17","unstructured":"(2024, August 03). Apache Spark\u2014Unified Engine for Large-Scale Data Analytics. Available online: https:\/\/spark.apache.org\/."},{"key":"ref_18","unstructured":"(2024, August 10). Apache Hadoop. Available online: https:\/\/hadoop.apache.org\/."},{"key":"ref_19","unstructured":"(2024, August 09). Windows Server 2008 R2 and Windows 2000. Microsoft. Available online: https:\/\/learn.microsoft.com\/en-us\/previous-versions\/windows\/it-pro\/windows-server-2012-r2-and-2012\/hh831795(v=ws.11)."},{"key":"ref_20","first-page":"1","article-title":"Footprinting using Nmap","volume":"3","author":"Singh","year":"2022","journal-title":"J. Inform. Electr. Electron. Eng."},{"key":"ref_21","unstructured":"(2024, August 09). \u201cPsExec.\u201d Microsoft Sysinternals Documentation, Microsoft. Available online: https:\/\/learn.microsoft.com\/en-us\/sysinternals\/downloads\/psexec."},{"key":"ref_22","unstructured":"(2024, August 09). GlassFish Documentation. Oracle. Available online: https:\/\/docs.oracle.com\/cd\/E26576_01\/index.htm."},{"key":"ref_23","unstructured":"(2024, August 09). ProFTPD Documentation. ProFTPD Project. Available online: http:\/\/www.proftpd.org\/."},{"key":"ref_24","unstructured":"(2024, August 09). SMB Essay 71415: SMB. University of Twente. Available online: https:\/\/essay.utwente.nl\/71415\/."}],"container-title":["Data"],"original-title":[],"language":"en","link":[{"URL":"https:\/\/www.mdpi.com\/2306-5729\/10\/5\/59\/pdf","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,10,9]],"date-time":"2025-10-09T17:21:27Z","timestamp":1760030487000},"score":1,"resource":{"primary":{"URL":"https:\/\/www.mdpi.com\/2306-5729\/10\/5\/59"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2025,4,25]]},"references-count":24,"journal-issue":{"issue":"5","published-online":{"date-parts":[[2025,5]]}},"alternative-id":["data10050059"],"URL":"https:\/\/doi.org\/10.3390\/data10050059","relation":{},"ISSN":["2306-5729"],"issn-type":[{"value":"2306-5729","type":"electronic"}],"subject":[],"published":{"date-parts":[[2025,4,25]]}}}