Educause Security Discussion mailing list archives
Re: Botnet Detection Systems
From: Afsin Taskiran <afsin () TASKIRAN ORG>
Date: Fri, 21 Sep 2012 01:03:14 +0300
Hi, We deploy Check Point's Anti Bot Software Blade and it is successfully deployed on some banks and universities/collages. AntiBot Software Blade has Multi-Tiered Detection Engine can detect bots and bots' communication via repudiation based, inbound C&C communication or to internet bot activation. Also Check Point Thread Cloud supports Anti-Bot Infrastructure. Also with Anti-Bot Software Blade and Check Point's Blade Architecture you can have a Firewall, IPS, Application Control and Anti Virus options. I strongly recommend you to make a PoC with Check Point. http://www.checkpoint.com/campaigns/anti-bot/index.html http://www.checkpoint.com/products/anti-bot-software-blade/index.html http://www.youtube.com/watch?v=PaykuZZhujc * Afşin TAŞKIRAN *Security Consultant, Turkey* *Mobile: +90 (532) 410 38 52 http://www.enderunix.org/afsin/ http://tr.linkedin.com/in/afsintaskiran 2012/9/20 Dennis Bohn <bohn () adelphi edu>
Surprised no one has yet mentioned Tipping Point. It has been quite good at detecting and preventing malware, including bots. best, Dennis Bohn Manager of Network and Systems Adelphi University bohn () adelphi edu 5168773327 On Wed, Sep 19, 2012 at 12:59 PM, PATRICK, MARTIN <MARTIN.PATRICK () tccd eduwrote:We use both the Fireeye and the Palo Alto boxes and the combination has very effective in controlling bots and most other malware problems.**** ** ** Martin**** ** ** *Martin Patrick* Information Services**** Tarrant County College District **** martin.patrick () tccd edu | www.tccd.edu**** ** ** *From:* The EDUCAUSE Security Constituent Group Listserv [mailto: SECURITY () LISTSERV EDUCAUSE EDU] *On Behalf Of *Sigmon, Aaron *Sent:* Wednesday, September 19, 2012 9:55 AM *To:* SECURITY () LISTSERV EDUCAUSE EDU *Subject:* Re: [SECURITY] Botnet Detection Systems**** ** ** www.paloaltonetworks.com**** ** ** Thanks,**** **** Aaron Sigmon | Sr. Information Security Engineer**** UNC Charlotte | Information and Technology Services**** 9201 University City Blvd. | Charlotte, NC 28223**** Phone: 704.687.1289**** bsigmo15 () uncc edu | http://www.uncc.edu**** ------------------------------------------------------------------------------------- **** If you are not the intended recipient of this transmission or a person responsible for delivering it to the intended recipient, any disclosure, copying, distribution, or other use of any of the information in this transmission is strictly prohibited. If you have received this transmission in error, please notify me immediately by email or by telephone at 704.687.1289. Thank you. **** ** ** *From: *WILLIAM I ARNOLD <WARNOLD () UT EDU> *Reply-To: *The EDUCAUSE Security Constituent Group Listserv < SECURITY () LISTSERV EDUCAUSE EDU> *Date: *Wednesday, September 19, 2012 10:22 AM *To: *"SECURITY () LISTSERV EDUCAUSE EDU" <SECURITY () LISTSERV EDUCAUSE EDU> *Subject: *[SECURITY] Botnet Detection Systems**** ** ** Hello,**** Here at the University of Tampa we are beginning the process in finding a solution that will do Bot detection. We have been looking at Damballa and would like to know if anyone is using this product and how well it's working. Would also like to know if anyone is using a different vendor. We would be interested in hearing how well it works in your environment. Please feel free to contact off list is you would like. Thanks**** Bill Arnold**** **** William I. Arnold IV**** Network Security Engineer**** University of Tampa**** warnold () ut edu**** 813-253-6284**** ****
Current thread:
- Botnet Detection Systems WILLIAM I ARNOLD (Sep 19)
- Re: Botnet Detection Systems Schattle, Donald (Sep 19)
- Re: Botnet Detection Systems Sigmon, Aaron (Sep 19)
- Re: Botnet Detection Systems PATRICK, MARTIN (Sep 19)
- Re: Botnet Detection Systems Dennis Bohn (Sep 20)
- Re: Botnet Detection Systems Afsin Taskiran (Sep 20)
- Re: Botnet Detection Systems PATRICK, MARTIN (Sep 19)
- Re: Botnet Detection Systems Calo, Andrew (Sep 19)