For a project, I need to evaluate a model that attempts to predict whether a certain cyber attack (that is, connection to a low-level honeypot) is just a random access, a new attack wave or an already known attack wave. Therefore, I am looking for a fundamental truth.
Is there a database containing historical attack waves? Something like
September, 24 - 29: Attack to Port 8080
September, 25 - 27: Attack to Port 1234
In the best case, it would be a database, where every hacker in the world registers, when a cyber attack begins and ends.
Or does anyone have another idea of how I could evaluate that model?