On 02/13/2014 01:04 PM, Robin Williams wrote: > It'd be nice to be able to automatically pull the full lists from > these various scanning projects to use in statistical analysis as > part of DDoS mitigation (i.e. if my traffic has just shot up and the > majority of it is coming from IPs listed in these databases, I can > take a pretty fair bet at what's happening and start to rate limit > or temporarily block these sources). Anyone know if there is an > interface for automated downloading of the raw data?
I believe so, contact me offlist for an intro to the people running this, basically you need to demonstrate to them that your intended use of the data is legitimate research/mitigation rather than nefarious. > Is anyone involved in these projects on list? Not AFIAK. > It'd also be good to discuss merging data from these projects into an > upstream 'open-generalbadstuff-project'. You might also want to look at the Spoofer project <http://spoofer.cmand.org/> if you didn't already. Keith
