INDEX
Sniffer
Vision uses the tshark sniffer in order to capture packets from the host network. To do so, the application must access the host network interface, so the NIDS Docker container has been deployed using network mode: host.
tshark creates a .pcap file which is transformed into a .csv file using the CICFlowMeter tool.
Capture time is hardcoded into the utils.js file, inside the Frontend container.