- Knowledge Centre
- Security & Privacy
- An Open Source Tool for Passive Detection of Unsolicited Network Scans in Small ISP and Enterprise Networks
An Open Source Tool for Passive Detection of Unsolicited Network Scans in Small ISP and Enterprise Networks
Swinburne University of Technology, Centre for Advanced Internet Architectures
Associate Professor Grenville Armitage
This grant was for the development of software to develop an open source tool that will aid in the detection of pre-infection network scans that frequently precede the creation of spammer botnets and zombie farms.
The project had both technical and social aims. Technically they aimed to release a free, open source set of software tools to allow simple Greynet deployment be network administrators. By publishing their results to the wider community, they also aimed to raise the profile of Australian research institutions in the international Internet operations community.
For more information, go to: http://caia.swin.edu.au/greynets
Unfortunately they didn't get any clear uptake of interest in their Greynet toolkit after it was released.