Blog Archives

Getting into the zone(s) with R + jsonlite

October 6, 2015
By

We have some strange data in cybersecurity. One of the (IMO) stranger data files is a Domain Name System (DNS) zone file. This file contains mappings between domain names and IP addresses (and other things) represented by “resource records”. Here’s an example for the dummy/example domain example.com: $ORIGIN example.com. ; designates the start of this zone file in...

Read more »

Getting into the zone(s) with R + jsonlite

October 6, 2015
By

We have some strange data in cybersecurity. One of the (IMO) stranger data files is a Domain Name System (DNS) zone file. This file contains mappings between domain names and IP addresses (and other things) represented by “resource records”. Here’s an example for the dummy/example domain example.com: $ORIGIN example.com. ; designates the start of this zone file in...

Read more »

Modern Honey Network Machinations with R, Python, phantomjs, HTML & JavaScript

August 23, 2015
By
Modern Honey Network Machinations with R, Python, phantomjs, HTML & JavaScript

This was (initially) going to be a blog post announcing the new mhn R package (more on what that is in a bit) but somewhere along the way we ended up taking a left turn at Albuquerque (as we often do here at ddsec hq) and had an adventure in a twisty maze of Modern Honey Network passages that...

Read more »

Modern Honey Network Machinations with R, Python, phantomjs, HTML & JavaScript

August 23, 2015
By
Modern Honey Network Machinations with R, Python, phantomjs, HTML & JavaScript

This was (initially) going to be a blog post announcing the new mhn R package (more on what that is in a bit) but somewhere along the way we ended up taking a left turn at Albuquerque (as we often do here at ddsec hq) and had an adventure in a twisty maze of Modern Honey Network passages that...

Read more »

New R Package – domaintools (access the DomainTools.com WHOIS API)

August 9, 2015
By

We just did a github release for an R package that provides an interface to the DomainTools API. It provides access to the core API functions that aren’t restricted (i.e. the ones we have access to): domaintools_api_key: Get or set DOMAINTOOLS_API_KEY value domaintools_username: Get or set DOMAINTOOLS_API_USERNAME value domain_profile: Domain Profile hosting_history: Hosting History parsed_whois: Parsed Whois reverse_ip: Reverse IP reverse_ns: Reverse Nameserver shared_ips: Shared IPs whois: Whois Lookup whois_history: Whois History Each function has a full description and...

Read more »

New R Package – domaintools (access the DomainTools.com WHOIS API)

August 9, 2015
By

We just did a github release for an R package that provides an interface to the DomainTools API. It provides access to the core API functions that aren’t restricted (i.e. the ones we have access to): domaintools_api_key: Get or set DOMAINTOOLS_API_KEY value domaintools_username: Get or set DOMAINTOOLS_API_USERNAME value domain_profile: Domain Profile hosting_history: Hosting History parsed_whois: Parsed Whois reverse_ip: Reverse IP reverse_ns: Reverse Nameserver shared_ips: Shared IPs whois: Whois Lookup whois_history: Whois History Each function has a full description and...

Read more »

The New and Improved R Shodan Package

August 7, 2015
By

For those not involved with all things “cyber”, let me start with a description of what Shodan is (though visiting the site is probably the best introduction to what secrets it holds). Shodan is—at it’s core—a search engine. Unlike Google, Shodan indexes what I’ll call “cyber” metadata and content about everything accessible via a public IP address. This means things like routers, switches...

Read more »

The New and Improved R Shodan Package

August 7, 2015
By

For those not involved with all things “cyber”, let me start with a description of what Shodan is (though visiting the site is probably the best introduction to what secrets it holds). Shodan is—at it’s core—a search engine. Unlike Google, Shodan indexes what I’ll call “cyber” metadata and content about everything accessible via a public IP address. This means things like routers, switches...

Read more »

RBerkeley Was Just Pining For The Fjords

July 27, 2015
By

UPDATE: RBerkeley is now on CRAN If you made it to Chapter 8 of Data-Driven Security after ~October 2014 and tried to run the BerkeleyDB R example, you were greeted with: Warning in install.packages : package ‘RBerkely’ is not available (for R version ) That’s due to the fact that it was removed from CRAN at the end of September, 2014 because the...

Read more »

RBerkeley Was Just Pining For The Fjords

July 27, 2015
By

If you made it to Chapter 8 of Data-Driven Security after ~October 2014 and tried to run the BerkeleyDB R example, you were greeted with: Warning in install.packages : package ‘RBerkely’ is not available (for R version ) That’s due to the fact that it was removed from CRAN at the end of September, 2014 because the package author & maintainer...

Read more »

Search R-bloggers


Sponsors

Never miss an update!
Subscribe to R-bloggers to receive
e-mails with the latest R posts.
(You will not see this message again.)

Click here to close (This popup will not appear again)