We have been engaged in scanning of the internet for its better health for over a year (we started with a few, then grew to a dozen). The decreases in abusable systems has dropped significantly in several areas. We have also had an inadvertent effect of identifying networking misconfiguration on many networks which has helped improve the stability and security of those organizations. Overall we have been very satisfied with the project and besides a few minor complaints it has been received very well by all of our consumers and the Internet in general.
While each of the protocols we scan have their own web page and have a large variety of information available about each scan, the information is a summation of the total, and in many cases a shorter list of the results. We believe in openness, although do not want to focus on any particular organization, since each one has different needs and capabilities of dealing with the results of the data. We wanted to make available a complete set of statistics for the scans. We are interested in seeing what everyone else might do with the information and perhaps even provide more value back to the community.
Here is the complete list of scan results in CSV format as well as the original statistics pages for each one:
- CharGEN – Web Page – By Country – By ASN
- DNS – Web Page – By Country – By ASN
- IPMI – Web Page – By Country – By ASN
- NetBIOS – Web Page – By Country – By ASN
- Netcore/Netis Routers – Web Page – By Country – by ASN
- NTP Mode 6 – Web Page – By Country – By ASN
- NTP Mode 7 – Web Page – By Country – By ASN
- QOTD – Web Page – By Country – By ASN
- SNMP – Web Page – By Country – By ASN
- SSDP – Web Page – By Country – By ASN
And the statistics for the Gameover Zeus takedown (GOZ)
Because we have an opt-out option for any network that does not wish to be scanned there will be certain networks for which we will not have any statistics. As this can skew any analytics when looking at the data we are also including all the whitelisting we are have been requested to deploy for any network greater than a /24 of IP address space. Because they are included in the whitelisting does not make them better or worse and in fact some of these are very clean networks. It does mean that we are not looking into them and therefore there is not any data.
- CharGEN – Web Page
- DNS – Web Page
- IPMI – Web Page
- NetBIOS – Web Page
- Netcore/Netis Router – Web Page
- NTP mode 6 – Web Page
- NTP mode 7 – Web Page
- QOTD – Web Page
- SNMP – Web Page
- SSDP – Web Page
So there you have it all. If you find something cool to do with the data please let us know.
- UPDATED: 2014-08-28 – Added Netcore/Netis Routers