North American Network Operators Group

Date Prev | Date Next | Date Index | Thread Index | Author Index | Historical

Re: looking for help for the statistics data on spoofing attack events on Internet

  • From: yangyang. wang
  • Date: Tue Dec 25 22:39:09 2007
  • Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:received:received:message-id:date:from:to:subject:cc:in-reply-to:mime-version:content-type:references; bh=z70zg3i0+gd9HFAEIj/1oBxg1J+KnBCH9QLV5CBMW50=; b=UKVV67EVhuNsNjLgR3sMluuQq+GzZAOPB1XBz+ig/sfSMrrVvv9HgMO1XD5320UKIiToOD34kkQ73N7qJcMWfoORUMTl3ZQSmUtRdhMb3dU95hbLYoo9ogPI+AhXoYKuQ/glKVtQ/ohYzu89HfyZbG/qnDNBwyr8ekicLTPMGxE=
  • Domainkey-signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=message-id:date:from:to:subject:cc:in-reply-to:mime-version:content-type:references; b=cW4B2/0NDXSfgF2H/Gzk6JlDJBw+fyjfLNmzDfYEgB9S471xovGorQBzn9grDd0/NWOTmdO1/XNUnMEwFTRy7NqBD5UmJkugn/Dq5m0QXu02b1fBoML7GHIRK0sUT2bDRpMh0Zvw6eKCuyv3lUHNpy4ET8AEnkskdBzAEvbTKjg=

Dear Mr. Morrow:
     
Thank you!
We have already found CAIDA's backscatter,  MIT's spoofer project. Spoofer project focuses on how much space in the Internet could be spoofable. It is very helpful for our experiment. But we also want to know how often the spoofing events(such spoofing IP attacks, spoofing route update) occurs, or the degree of their activity in real world. Monitoring the Internet widely is very difficult,so I hope to get some useful infomation by surveying the related statistical data and report from organization. currently, this way has no effective result.
 
2007/12/24, Christopher Morrow <[email protected]>:
On Dec 24, 2007 12:08 AM, yangyang. wang <[email protected]> wrote:
>
> We are conducting an experiment to evaluate IP source address spoofing
> attacks on Internet and want to collect some statistics data or report about
> it  Which organization or research group could support some statistics data,
> report or hints on the spoofed IP source address attack events, DNS spoofing
> events, router forged update events on the whole Internet or regional
> network for research analysis?

you might get some mileage from the spoofer-project out of MIT:

http://spoofer.csail.mit.edu/

have fun!