Cybersecurity research increasingly depends on reproducible evidence, such as traffic traces, logs, and labeled datasets, yet most public datasets remain static and offer limited support for controlled re-execution and traceability, especially in heterogeneous multi-protocol environments. This paper presents NetSecBed, a container-native, scenario-oriented testbed for reproducible generation of network traffic evidence and execution artifacts under controlled conditions, particularly suitable for IoT, IIoT, and pervasive multi-protocol environments. The framework integrates 60 attack scenarios, 9 target services, and benign traffic generators as single-purpose containers, enabling plug-and-play extensibility and traceability through declarative specifications. Its pipeline automates parametrized execution, packet capture, log collection, service probing, feature extraction, and dataset consolidation. The main contribution is a repeatable, auditable, and extensible framework for cybersecurity experimentation that reduces operational bias and supports continuous dataset generation.

翻译：网络安全研究日益依赖于可重复的证据，如流量轨迹、日志和标注数据集，然而大多数公开数据集仍处于静态状态，对受控重执行和可追溯性的支持有限，尤其是在异构多协议环境中。本文提出NetSecBed——一个面向场景的容器原生测试平台，用于在受控条件下可重复地生成网络流量证据和执行工件，特别适用于物联网、工业物联网及泛在多协议环境。该框架集成60个攻击场景、9个目标服务以及良性流量生成器作为单用途容器，通过声明式规范实现即插即用的可扩展性和可追溯性。其流水线自动化执行参数化配置、数据包捕获、日志收集、服务探测、特征提取及数据集整合等流程。主要贡献在于构建了可重复、可审计、可扩展的网络安全实验框架，减少了操作偏差并支持持续的数据集生成。