English
Related papers

Related papers: LZR: Identifying Unexpected Internet Services

200 papers

Internet-wide scanning is commonly used to understand the topology and security of the Internet. However, IPv4 Internet scans have been limited to scanning only a subset of services -- exhaustively scanning all IPv4 services is too costly…

Networking and Internet Architecture · Computer Science 2023-03-03 Liz Izhikevich , Renata Teixeira , Zakir Durumeric

Port scanning is the process of attempting to connect to various network ports on a computing endpoint to determine which ports are open and which services are running on them. It is a common method used by hackers to identify…

Cryptography and Security · Computer Science 2023-02-01 Jason M. Pittman

Network scanning tools play a major role in Internet security. They are used by both network security researchers and malicious actors to identify vulnerable machines exposed on the Internet. ZMap is one of the most common probing tools for…

Cryptography and Security · Computer Science 2019-08-14 Johan Mazel , Rémi Strullu

Internet-wide scans are an important tool to evaluate the deployment of services. To enable large-scale application layer scans, a fast, stateless port scan (e.g., using ZMap) is often performed ahead of time to collect responsive targets.…

Networking and Internet Architecture · Computer Science 2023-10-27 Patrick Sattler , Johannes Zirngibl , Mattijs Jonker , Oliver Gasser , Georg Carle , Ralph Holz

Network telescopes serve as a critical passive monitoring tool for capturing unsolicited Internet traffic, providing insights into global scanning and reconnaissance behavior. This study analyzes a 10-day dataset during January 2025…

Cryptography and Security · Computer Science 2026-05-05 Shereen Ismail , Taelyn Dyer , Raul Martinez , Garrett Gastman , Yozelyn Chavez , Asma Jodeiri Akbarfam

Fast large-scale network scanning is an important way to understand internet service configurations and security in real time, among which stateless scan is representative. Existing stateless scanners can perform single-packet scans for…

Networking and Internet Architecture · Computer Science 2024-05-14 Chiyu Chen , Yuliang Lu , Guozheng Yang , Yi Xie , Shasha Guo

In this work we identify scanning strategies of IPv6 scanners on the Internet. We offer a unique perspective on the behavior of IPv6 scanners by conducting controlled experiments leveraging a large and unused /56 IPv6 subnet. We selectively…

Networking and Internet Architecture · Computer Science 2022-10-07 Hammas Bin Tanveer , Rachee Singh , Paul Pearce , Rishab Nithyanand

Port scanning is the process of attempting to connect to various network ports on a computing endpoint to determine which ports are open and which services are running on them. It is a common method used by hackers to identify…

Cryptography and Security · Computer Science 2023-02-21 Jason M. Pittman

Internet-wide scans are a common active measurement approach to study the Internet, e.g., studying security properties or protocol adoption. They involve probing large address ranges (IPv4 or parts of IPv6) for specific ports or protocols.…

Networking and Internet Architecture · Computer Science 2019-01-23 Jan Rüth , Torsten Zimmermann , Oliver Hohlfeld

Cloud computing has dramatically changed service deployment patterns. In this work, we analyze how attackers identify and target cloud services in contrast to traditional enterprise networks and network telescopes. Using a diverse set of…

Cryptography and Security · Computer Science 2023-10-02 Liz Izhikevich , Manda Tran , Michalis Kallitsis , Aurore Fass , Zakir Durumeric

Large-scale Internet scans are a common method to identify victims of a specific attack. Stateless scanning like in ZMap has been established as an efficient approach to probing at Internet scale. Stateless scans, however, need a second…

Cryptography and Security · Computer Science 2021-10-12 Raphael Hiesgen , Marcin Nawrocki , Alistair King , Alberto Dainotti , Thomas C. Schmidt , Matthias Wählisch

The majority of electronic communication today happens either via email or chat. Thanks to the use of standardised protocols electronic mail (SMTP, IMAP, POP3) and instant chat (XMPP, IRC) servers can be deployed in a decentralised but…

Cryptography and Security · Computer Science 2016-01-26 Ralph Holz , Johanna Amann , Olivier Mehani , Matthias Wachs , Mohamed Ali Kaafar

The ongoing trend to move industrial appliances from previously isolated networks to the Internet requires fundamental changes in security to uphold secure and safe operation. Consequently, to ensure end-to-end secure communication and…

Cryptography and Security · Computer Science 2022-06-02 Markus Dahlmanns , Johannes Lohmöller , Jan Pennekamp , Jörn Bodenhausen , Klaus Wehrle , Martin Henze

We conduct the first comprehensive security study on representative port forwarding services (PFS), which emerge in recent years and make the web services deployed in internal networks available on the Internet along with better usability…

Cryptography and Security · Computer Science 2024-04-11 Haoyuan Wang , Yue Xue , Xuan Feng , Chao Zhou , Xianghang Mi

Port scanning refers to the systematic exploration of networked computing systems. The goal of port scanning is to identify active services and associated information. Although this technique is often employed by malicious actors to locate…

Cryptography and Security · Computer Science 2023-03-21 Jason M. Pittman

The two most spread network anomalies are port and net scan. In this work, we present and analyze the results obtained by traditional approaches for the detection of net scan and port scans. We use a simple threshold-based algorithm,…

Networking and Internet Architecture · Computer Science 2019-05-31 Antonia Affinito , Alessio Botta , Luigi Gallo , Mauro Garofalo , Giorgio Ventre

Traffic monitoring is essential for network management tasks that ensure security and QoS. However, the continuous increase of HTTPS traffic undermines the effectiveness of current service-level monitoring that can only rely on unreliable…

Cryptography and Security · Computer Science 2020-08-20 Wazen M. Shbair , Thibault Cholez , Jerome Francois , Isabelle Chrisment

Website fingerprinting enables an attacker to infer which web page a client is browsing through encrypted or anonymized network connections. We present a new website fingerprinting technique based on random decision forests and evaluate…

Cryptography and Security · Computer Science 2016-02-22 Jamie Hayes , George Danezis

Protecting users' privacy over the Internet is of great importance; however, it becomes harder and harder to maintain due to the increasing complexity of network protocols and components. Therefore, investigating and understanding how data…

Networking and Internet Architecture · Computer Science 2021-09-14 Mahdi Jafari Siavoshani , Amir Hossein Khajepour , Amirmohammad Ziaei , Amir Ali Gatmiri , Ali Taheri

We describe a method for remotely detecting intentional packet drops on the Internet via side channel inferences. That is, given two arbitrary IP addresses on the Internet that meet some simple requirements, our proposed technique can…

Networking and Internet Architecture · Computer Science 2013-12-20 Roya Ensafi , Jeffrey Knockel , Geoffrey Alexander , Jedidiah R. Crandall
‹ Prev 1 2 3 10 Next ›