Summary

This is a PIG LATIN script that analyse (anonymized) passive DNS data collected by the Dutch Academic Network (SURFNet). Such Passive DNS was collected based on a list of websites that offer DDoS as a paid service, aka Booters, DDoS-for-Hire, and Stressers.

Data Meta-Description

~7 columns (Depending on recordType): timestamp, recordType, srcIpAnon, In, answer, booterInformation, error;

recordType can be the following:

Q(Q) is the original query;
Q(R) is the query in the answer;
R(ANS) is the answer;
R(AUT) is authority;
R(ADD) is additional;

Example:

-- 1434735481, Q(Q), c861aaa8307395e94c0bc1d88e9846ff168071252198640801b108219b3899be, IN, A, [Booter domain name] -- 1434735481, Q(R), c861aaa8307395e94c0bc1d88e9846ff168071252198640801b108219b3899be, IN, A, [Booter domain name], NOERROR -- 1434735481, R(ANS), c861aaa8307395e94c0bc1d88e9846ff168071252198640801b108219b3899be, IN, A, [Booter IP Address]

Name		Name	Last commit message	Last commit date
Latest commit History 29 Commits
output		output
.DS_Store		.DS_Store
._.DS_Store		._.DS_Store
README.md		README.md
processing_anon_booters.pig		processing_anon_booters.pig

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Repository files navigation

Summary

Data Meta-Description

recordType can be the following:

Example:

Note: 1 Q(Q) => 1 Q(R) && one or many R(ANS)

There are blank lines!!!

We can provide the data upon request.

About

Releases

Packages

Contributors 2

Languages

jjsantanna/PassiveDNS_PIGLATIN

Folders and files

Latest commit

History

Repository files navigation

Summary

Data Meta-Description

recordType can be the following:

Example:

Note: 1 Q(Q) => 1 Q(R) && one or many R(ANS)

There are blank lines!!!

We can provide the data upon request.

About

Resources

Stars

Watchers

Forks

Releases

Packages 0

Contributors 2

Languages

Packages