add debugging prints

stratosphereips · Sep 25, 2023 · dd83f42 · dd83f42
1 parent 90fb511
commit dd83f42
Show file tree

Hide file tree

Showing 3 changed files with 10 additions and 1 deletion.
diff --git a/comparisons/flow_by_flow.py b/comparisons/flow_by_flow.py
@@ -15,6 +15,7 @@ def get_labels_lists(self, tool: str) -> Tuple[List, List]:
         parses the labels from the db and returns actual and predicted labels list for the given tool
         :return: a tuple with 2 lists, first is actual, second is predicted labels
         """
+        print(f"@@@@@@@@@@@@@@@@ get_labels_lists is called for tool {tool}")
         actual = []
         predicted = []
 
@@ -24,6 +25,8 @@ def get_labels_lists(self, tool: str) -> Tuple[List, List]:
             # (aid, gt_label, tool_label)
             ground_truth_label, tool_label = flow
             actual.append(ground_truth_label)
+            if tool_label == 'malicious':
+                print(f"@@@@@@@@@@@@@@@@ {self.name} found 1 predicted malicious flow by {tool}")
             predicted.append(tool_label)
 
         return actual, predicted
diff --git a/database/sqlite_db.py b/database/sqlite_db.py
@@ -353,11 +353,13 @@ def get_labels_flow_by_flow(self, by='all'):
         returns all ground truth and the given tools' labels from the labels_flow_by_flow table
         :param by: do we want the labels for all tools? slips only? or suricata only?
         """
+        print(f"@@@@@@@@@@@@@@@@ get_labels_flow_by_flow for tool {by}")
 
         if by == 'all':
             cols = '*'
         else:
             label_col = self.labels_map[by]
+            print(f"@@@@@@@@@@@@@@@@ col name for this tool is {label_col}")
             cols = f'ground_truth_label, {label_col}'
 
         return self.select('labels_flow_by_flow', cols)

diff --git a/parsers/suricata.py b/parsers/suricata.py
@@ -110,12 +110,16 @@ def parse(self):
 
                 if self.db.store_flow(flow, 'suricata'):
                     if 'malicious' in label.lower():
+                        print(f"@@@@@@@@@@@@@@@@ found 1 NON DISCARDED flow with malicious label in suricata! ")
+
                         self.malicious_labels += 1
                         if not self.label_malicious_tw(timestamp, line['src_ip']):
                             self.warn_about_discarded_alert(timestamp)
                     else:
                         self.benign_labels += 1
-
+                else:
+                    if 'malicious' in label.lower():
+                        print(f"@@@@@@@@@@@@@@@@ found 1 discarded flow with malcious label in suricata! ")
 
                 self.db.store_suricata_flow(flow)
                 # used for printing the stats in the main.py