@d4_project profile picture
D4 Project @d4_project

Large-scale distributed sensor network project to monitor DDoS and other malicious activities. by @circl_lu & co-funded from the EU #CEFTelecom Programme.

Joined February 2018
  • Tweets 183
  • Following 22
  • Followers 690
41 Photos and videos
D4 Project retweeted
Alexandre Dulaunoy @adulau@infosec.exchange@adulau
15 Jul 2022
I finally updated the original @d4_project Passive DNS analyser into an independent Passive DNS which can have collection from COF web-socket streams. A sample COF stream is provided with the newly seen AAAA records. github.com/D4-project/analyz…
9
16
D4 Project retweeted
CIRCL - @circl@social.circl.lu@circl_lu
1 Apr 2022
FYI, the old IP ASN History is archived at @circl_lu and it is now github.com/D4-project/IPASN-… under the @d4_project and maintained over there.

GitHub - D4-project/IPASN-History: IP ASN History to find ASN announcing an IP and the closest...

IP ASN History to find ASN announcing an IP and the closest prefix announcing it at a specific date - D4-project/IPASN-History

github.com
2
5
D4 Project retweeted
CIRCL - @circl@social.circl.lu@circl_lu
5 Feb 2022
We published open source metrics about @circl_lu contributions to projects that we maintain or co-maintain such as @MISPProject @ail_project and others. opensource-metrics.circl.lu/ The open source security community is important, don't forget to tune in #FOSDEM this week-end.
1
22
41
D4 Project retweeted
Sí, soy yo@nuria_imeq
19 Jan 2022
🔝 Muy recomendable la herramienta #BGPRanking de @d4_project @circl_lu Permite consultar la reputación de IP y ASN en base a IOCs en las que aparece, puedes consultar IP, obtener el ranking de un ASN, su historico, etc.
1
2
7
D4 Project@d4_project
18 Jan 2022
BGP Ranking software back-end version 2.0 released. github.com/D4-project/BGP-Ra… Release notes: github.com/D4-project/BGP-Ra… Online public version at @circl_lu : bgpranking.circl.lu/ Thanks to @rafi0t and all the supporters (@EU_HaDEA) . #ThreatIntelligence #opensource
9
7
D4 Project retweeted
CIRCL - @circl@social.circl.lu@circl_lu
23 Dec 2021
We are working on improvements to the @d4_project BGP Ranking core open source software. CIRCL BGP Ranking now runs the current beta version with a faster database back-end. #ThreatIntelligence Live bgpranking.circl.lu/ Source code github.com/D4-project/BGP-Ra…
Continuous malicious ranking without positive evolution.

ALT Continuous malicious ranking without positive evolution.

AlphaStrike scanning for log4j and other vulnerabilities.

ALT AlphaStrike scanning for log4j and other vulnerabilities.

7
17
D4 Project retweeted
Alexandre Dulaunoy @adulau@infosec.exchange@adulau
1 Jan 2022
Every day (and night) is such a gift to be in teams of talented individuals within @MISPProject @ail_project @circl_lu @d4_project @cerebrateproje1 and many others. I strongly the believe open source strength are the communities behind. Happy new year! x.com/MISPProject/status/147…

ALT Wolf Of Wallstreet GIF

MISP (@misp@misp-community.org)@MISPProject
1 Jan 2022
For this new year we would like to thank the 461 contributors to the @MISPProject who helped us to make MISP a better open source software, open standard and improved community for threat intelligence and information sharing at large. #threatintel #cti misp-project.org/contributor…
A visualisation of the 461 contributors to the MISP project.

ALT A visualisation of the 461 contributors to the MISP project.

1
5
16
D4 Project@d4_project
24 Oct 2021
There are major work in progress in our IPASN-History open source project github.com/D4-project/IPASN-… - thanks to @rafi0t - the API is improved with OpenAPI and the @circl_lu instance will be updated. Stay tuned!
2
6
D4 Project retweeted
Anna Felkner@Anna_cybersec
20 Oct 2021
It was a great presentation!
D4 Project@d4_project
20 Oct 2021
We presented our updated pipeline for analysing botnets abusing tor2web gateways at @securepl using open source tools such as @d4_project @MISPProject and also Karton and MWDB from @CERT_Polska @NASK_pl Slides: github.com/D4-project/d4-web… x.com/circl_lu/status/145000…
4
4
D4 Project@d4_project
20 Oct 2021
We presented our updated pipeline for analysing botnets abusing tor2web gateways at @securepl using open source tools such as @d4_project @MISPProject and also Karton and MWDB from @CERT_Polska @NASK_pl Slides: github.com/D4-project/d4-web… x.com/circl_lu/status/145000…

CIRCL - @circl@social.circl.lu@circl_lu
18 Oct 2021
We (@gallypette and @adulau) will present at @securepl about our ongoing monitoring techniques of a botnet using Tor. It's an update of our @FIRSTdotOrg CTI presentation. secure.edu.pl/en/agenda #infosec
An Update on Industrialize the Tracking of Botnet Operations – A Practical Case with Large Coin-Mining Threat-Actor(s) Alexandre Dulaunoy, Jean-Louis Huynen CSIRTs/CERTS, like CIRCL, are regularly tracking, monitoring and disturbing botnet networks. This can be a tedious task for incident responders. We will release the threat intelligence related to a large coin-mining threat-actor(s) during this talk. Excel sheets don’t scale any more and this case showed us when to automate and where the benefit from proper tooling is a gain for a team. We will also propose some techniques for continuous monitoring of threat actors.

ALT An Update on Industrialize the Tracking of Botnet Operations – A Practical Case with Large Coin-Mining Threat-Actor(s) Alexandre Dulaunoy, Jean-Louis Huynen CSIRTs/CERTS, like CIRCL, are regularly tracking, monitoring and disturbing botnet networks. This can be a tedious task for incident responders. We will release the threat intelligence related to a large coin-mining threat-actor(s) during this talk. Excel sheets don’t scale any more and this case showed us when to automate and where the benefit from proper tooling is a gain for a team. We will also propose some techniques for continuous monitoring of threat actors.

1
11
19
"Publishing open data in the cyber security field" d4-project.org/2021/10/04/pu… - having proper metadata while publishing dataset is critical. The open-data-security format from @circl_lu used in the scope of @VARIoT_project can help to better measure cyber security. #OpenData
4
8
The @d4_project team (@Terrtia @gallypette @adulau @chrisred_68 ) will join the @circl_lu / @MISPProject hackathon (Monday 25th October 2021 and Tuesday 26th October 2021) misp-project.org/hackathon/ #opensource #infosec - join us!

Open Source Security hackathon - Monday 25th October 2021 and Tuesday …

MISP Threat Intelligence & Sharing

misp-project.org
8
8
D4 Project retweeted
MISP (@misp@misp-community.org)@MISPProject
23 Sep 2021
Open Source Security hackathon - Monday 25th October 2021 and Tuesday 26th October 2021 - don't hesitate to join us @MISPProject @circl_lu @ail_project @d4_project @cve_search @cerebrateproje1 @lookyloo_app and many others. #opensource #infosecurity misp-project.org/hackathon/
42
51
D4 Project retweeted
AIL Project@ail_project
27 Aug 2021
AIL Framework version 3.7 released with many bugs fixed, improvement and new feeders (including Discord, ActivityPub and RSS/Atom). #threatintelligence #DarkWeb #opensource ail-project.org/blog/2021/08…
AIL framework screenshot of correlation between cryptocurrencies addresses and other items in the database. \

ALT AIL framework screenshot of correlation between cryptocurrencies addresses and other items in the database. \
24
57
D4 Project retweeted
AIL Project@ail_project
14 Jul 2021
AIL Framework version 3.6 released with new features (such as YARA retrohunt) and many bugs fixed. #ThreatIntel #dataleak #DarkWeb github.com/ail-project/ail-f…
2
37
69
D4 Project retweeted
Alexandre Dulaunoy @adulau@infosec.exchange@adulau
13 Jul 2021
Looking at #SolarWinds Serv-U issue, the SSH banners (found in our Passive SSH) are hilarious especially the FIPS compliant ones. If you are an adversary, it's maybe the first you would like to target...
6
18
D4 Project@d4_project
29 Jun 2021
The D4 Project by the numbers. Do you wonder what we did for the past 3 years and half for the D4 project. Have a look at the numbers. Thanks to @EU_HaDEA and @circl_lu for the funding. It's just the beginning of new open source tools and building blocks to improve security.
D4 - By the numbers - 22708 hours of work at CIRCL for D4 project on a period over 3 years and 6 months. - 112 organisations (26 EU member states) got access and use the D4 project data. - D4 project infrastructure at CIRCL is composed of 14 bare-metal servers on a 10 Gbit/s Internet network capacity. - 30 TB of metadata collected by D4 project including Passive DNS, Passive SSL, dark-web monitoring and network telescope. -50 repositories of Open Source code.

ALT D4 - By the numbers - 22708 hours of work at CIRCL for D4 project on a period over 3 years and 6 months. - 112 organisations (26 EU member states) got access and use the D4 project data. - D4 project infrastructure at CIRCL is composed of 14 bare-metal servers on a 10 Gbit/s Internet network capacity. - 30 TB of metadata collected by D4 project including Passive DNS, Passive SSL, dark-web monitoring and network telescope. -50 repositories of Open Source code.
15
27
D4 Project retweeted
CIRCL - @circl@social.circl.lu@circl_lu
8 Jun 2021
The weird network scanning of the day from 36.27.214.242 (CN) targeting DNS on UDP (53): Bytes SzoBIAABAAAAAAAAB3ZlcnNpb24EYmluZMAbABAAAw==

ALT What Are You Talking About Weird Look GIF

2
2
3
D4 Project retweeted
Alexandre Dulaunoy @adulau@infosec.exchange@adulau
8 Jun 2021
"Improving Internet Wide Scanning with Dynamic Scanning" - Slides github.com/adulau/active-sca… given at #FIRSTCON21 @FIRSTdotOrg
31
89
D4 Project@d4_project
22 Apr 2021
RT @circl_lu: @malwaremustd1e @SeraphimDomain @Sug4r7 @adulau @FaLconIntel @trompi @jcanto @bletchley13 Thanks for the organisation and the…
2
Load more