Security Data Visualization

Syndicate

Projects

mirrored Conference materials

BinVis

Git projects

Shared notes

Search

Flattr

If you like this, you can use flattr. ;)

Imprint

About
eMail: wishinet at gmail . com
PGP ID: 0xCCCA5E74

Jabber: wishi@jabber.ccc.de

Similar entries

Recent blog posts

wishinet: checking out GDB with Dtrace support for OS X... (1.9.2). Should be interesting.
wishinet: RT @bfoo: Worth reading: http://merbist.com/2010/08/22/discussion-with-a-java-switcher/
wishinet: nächstes Jahr Taikai in Nürnberg (http://www.taikai.de/) - und nu aus Nürnberg total groggy in die Falle! ;)

Links

UnprotectedHex - about formal software verification
Sean's blog

Xecurity - a security feed collecter
Reddit RCE group

Freedom To Tinker
Emergent Chaos

Woodmann RCE forums
OpenRCE community forums

SecViz - security data visualization
DAVIX Live - for security metrics
Hex Live
Security Metrics

Immunity's Free Software
Core Security's OpenSouce research
Zynamics Blog

Centralops
Serversniff

Security Data Visualization

Sat, 08/02/2008 - 13:01 | wishi

txtScanning huge networks - much data - wtf?

That's what I thought. Visualization helps. There's a brilliant book by Greg Conti "Security Data Visualization". It's printed in color ;), has fascinating ease and introduces elegant network mapping techniques.

I. e. a pcap player. rumint - give him a pcap and he replays it graphically in Windows.

There's radialnet, which takes nmap's xml and renders it in a 2d python environment. The host you're clicking on get logically centered - it brings up the connection to a living network plan.

The books mentions MUCH more. IDS views, spreads of rootkits visualized - auditing.

Scapy can help you too - of course... A picture is worth a thousand packets :).

wishi's blog |

1+[encrypted]+#b94+ |

txt

Post new comment

Your name:

E-mail:

The content of this field is kept private and will not be shown publicly.

Homepage:

Comment: *

Input format

Filtered HTML

Web page addresses and e-mail addresses turn into links automatically.
Allowed HTML tags: <a> <em> <strong> <cite> <code> <ul> <ol> <li> <dl> <dt> <dd>
Lines and paragraphs break automatically.
You can enable syntax highlighting of source code with the following tags: <code>, <blockcode>, <c>, <cpp>, <drupal5>, <drupal6>, <java>, <javascript>, <php>, <python>, <ruby>. The supported tag styles are: <foo>, [foo].
Information indicating specific htmLawed (X)HTML filter/purifier settings in effect, which may depend on the content-type, will be shown where appropriate.
Twitter-style @usersnames are linked to their Twitter account pages.
Twitter-style #hashtags are linked to search.twitter.com.

Full HTML

Web page addresses and e-mail addresses turn into links automatically.
Lines and paragraphs break automatically.
You can enable syntax highlighting of source code with the following tags: <code>, <blockcode>, <c>, <cpp>, <drupal5>, <drupal6>, <java>, <javascript>, <php>, <python>, <ruby>. The supported tag styles are: <foo>, [foo].
Information indicating specific htmLawed (X)HTML filter/purifier settings in effect, which may depend on the content-type, will be shown where appropriate.

More information about formatting options

CAPTCHA

This question is for testing whether you are a human visitor and to prevent automated spam submissions.

Egglue Powered

crazylazy.info

Syndicate

Projects

Search

Flattr

Imprint

Similar entries

Recent blog posts

wishi's Twitter

Navigation

Links

Security Data Visualization

Post new comment

Save the nature. Don't print this!

Datenerfassung