Network Security Research Lab at 360

security visibility through big data

PassiveDNS

passiveDNS

PassiveDNS

We started our passive DNS project in 2014, it is the first and biggest public known PDNS system in China.

On average our PDNS handles 240 billions DNS requests per days and that gives us huge insight of what is going on from DNS perspective.

View details »

DDoSMon

DDoSMon

DDoSMon

DDoSMon is our global DDoS attack monitoring system, it sees on average more than 30k unique DDos attacks every single day. This system is heavily used by lots of regular security engineers from various corporation & organization.

View details »

NetworkScan Mon

Scan

NetworkScan Mon

There are scanners out there scanning the internet all the time, and the ability to detect the active scanners is relatively lacked. Therefore, we have decided to provide free access for general public to our NetworkScan Mon system. The system captures more than 10k scanner IPs every day and has a neat way to research on scan activities.

View details »

OpenData

OpenData

OpenData

We believe in information sharing and collaboration, and here is our playground to provide some of our research work to the security community.

Currently, we have EK, DNS DGA, MalConn(sample network behaviour), Mirai scanner, Mirai C2 and DRDoS Reflector data feed and we plan to make more data available in the future.

View details »