|
Home | |
Blog | |
Services | |
Files | |
Projects | |
Links | |||
|
|
|||||||||||||
|
|
||||||||||||||||||||||||||||
| No, no, you're not thinking, you're just being logical | |||||||||||||||||||||||||||||
|
|||||||||||||||||||||||||||||
|
|||||||||||||||||||||||||||||
|
|
ProjectsCyber Terrorism Research and EvaluationLead: Matthew WollenweberSummary: This project is designed to use open source intelligence and custom collection techniques to better evaluate the threat posed by "Cyber Terrorism" and in particular "Cyber Jihad". This project is NOT meant to evangelize or hype the threat. Rather, we seek to evaluate the technical capabilities and tools that these organizations possess. Host Bridging DetectionLead: Matthew WollenweberSummary: The goal of this project is to develop tools and techniques at the network layer, and without access to hosts, if a given host bridges one or more networks. Passive Host CharacterizationLead: Matthew WollenweberSummary: Passive Host Characterization is technology similar to IDS systems, but with several distinctions. The basic idea is to deploy sensors around your network to passively monitor traffic. Rather than looking for signatures, you’re going to focus on rules that collect data from the observed traffic. That data is then aggregated, reduced, and stored in databases. Via data-mining you can then see patterns in your network useful for applications such as host monitoring, content filtering, penetration testing, patch management, or detecting bots. Files: phc-shmoocon.ppt Semi Idle ScanningLead: Matthew WollenweberSummary: Semi Idle scanning is a scanning technique similar to idle scanning -- but can be done on "almost" idle host. Don't Bug MeLead: Matthew WollenweberSummary: Dontbugme is an email forwarding service. It lets users freely get a unique email address to use for 24 hours. A basic prototype has been completed and is open for limited testing. The system utilizes Apache, Postfix, MySQL, and Python to deliver a lightweight functional app. |