SlideShare ist ein Scribd-Unternehmen logo

How RIPE NCC Tools Can Help with Online Investigations

RIPE NCC
RIPE NCC

Presentation given by Mirjam Kühne and Ivo Dijkhuis at the 50th CSIRT Task Force (TF-CSIRT 50) in Valencia, Spain on 24 January 2017.

Technologie
1 von 51
Downloaden Sie, um offline zu lesen
Ivo Dijkhuis & Mirjam Kühne | TF-CSIRT 50 | 24-01-2017 How RIPE NCC tools can help with online investigations
2 The Internet Registry System
I. Dijkhuis & M. Kühne | TF-CSIRT 50 | 24 January 2017 3 RIPE Atlas Coverage
I. Dijkhuis & M. Kühne | TF-CSIRT 50 | 24 January 2017 4 RIPE Atlas - atlas.ripe.net • RIPE Atlas is a global active measurements platform • Probes hosted by volunteers • Data publicly available "RIPE Atlas: A Global Internet Measurement Network" (PDF). Internet Protocol Journal 18. September 2015. ISSN 1944-1134.
I. Dijkhuis & M. Kühne | TF-CSIRT 50 | 24 January 2017 5 Zoom in to Spain
I. Dijkhuis & M. Kühne | TF-CSIRT 50 | 24 January 2017 6 RIPE Atlas Numbers • 9,400 RIPE Atlas probes connected worldwide • 4,100 Measurements collected per second • 35,000 user-defined measurements per week
I. Dijkhuis & M. Kühne | TF-CSIRT 50 | 24 January 2017 7 RIPE Atlas Measurements • Built-in Global measurements towards root name servers - Visualised as Internet traffic maps • Built-in Regional measurements towards RIPE Atlas anchors • Users can run customised measurements - ping, traceroute, DNS, SSL/TLS, NTP and HTTP (only towards RIPE Atlas anchors)
Some Features
I. Dijkhuis & M. Kühne | TF-CSIRT 50 | 24 January 2017 9 Most Popular Features • Powerful and informative visualisations • APIs to start measurements and get results • Command line interface • Streaming data for real-time results • “Time Travel”
I. Dijkhuis & M. Kühne | TF-CSIRT 50 | 24 January 2017 10 Monitoring using RIPE Atlas • Integrate “status checks” with existing monitoring tools (such as Icinga, Nagios) • Using real-time data streaming - Server monitoring - Detecting and visualising outages • Developed by community: “RIPE Atlas Monitor”
I. Dijkhuis & M. Kühne | TF-CSIRT 50 | 24 January 2017 11 Time Travel • Allows you to look at historical data • For Internet maps and measurement results
I. Dijkhuis & M. Kühne | TF-CSIRT 50 | 24 January 2017 12 Use Cases on RIPE Labs • Measuring Internet Access Disruptions - https://labs.ripe.net/Members/emileaben/internet-access- disruption-in-turkey - https://labs.ripe.net/Members/emileaben/internet-access- disruption-in-the-gambia-2016 • Measuring DNS Censorship and Hijacking - https://labs.ripe.net/Members/babak_farrokhi/operator- level-dns-redirection - https://labs.ripe.net/Members/stephane_bortzmeyer/dns- censorship-dns-lies-seen-by-atlas-probes
I. Dijkhuis & M. Kühne | TF-CSIRT 50 | 24 January 2017 13 Use Cases on RIPE Labs • Monitoring connectivity and connectivity problems - https://labs.ripe.net/Members/annika_wickert/using-ripe- atlas-to-monitor-game-service-connectivity - https://labs.ripe.net/Members/jason_read/using-ripe-atlas- to-measure-cloud-connectivity - https://labs.ripe.net/Members/stephane_bortzmeyer/ using-ripe-atlas-to-debug-network-connectivity-problems
I. Dijkhuis & M. Kühne | TF-CSIRT 50 | 24 January 2017 14 More Information • https://atlas.ripe.net/ • https://labs.ripe.net/atlas • Webinars, Training Courses • Targeted workshops
RIPE WHOIS Database
16 RIPE Database • Public Internet resource and routing registry database • Answers: - Who is using an address block? - How can I contact them? • All 5 RIRs have their own database - http://www.iana.org/whois
17 Other Registries • IANA - http://www.iana.org/numbers • Regional Internet Registries - http://whois.arin.net/ui/advanced.jsp - http://www.apnic.net/apnic-info/whois_search - http://www.afrinic.net/en/services/whois-query - http://lacnic.net/cgi-bin/lacnic/whois?lg=EN
18 RIPE Database Objects • Resources - inetnum, inet6num, aut-num • Contact - organisation, person, role • Routing - route, route6 • Reverse DNS - domain • Object protection - mntner
19 Objects Are Related To Each Other IP range org: contact: Organisation contact: Person org:
• Web interface • Command line 20 Querying the RIPE Database • Full Text Search • Restful API (XML/JSON) 193.0.24.1 ✓
21 Query Results
22 Options for Queries ✓
role: RIPE NCC Operations address: Singel 258 address: 1016 AB Amsterdam address: The Netherlands phone: +31 20 535 4444 fax-no: +31 20 535 4445 abuse-mailbox: abuse@ripe.net admin-c: JDR-RIPE admin-c: BRD-RIPE tech-c: GL7321-RIPE tech-c: SO2011-RIPE tech-c: TOL666-RIPE tech-c: MG18669-RIPE tech-c: RDM397-RIPE nic-hdl: OPS4-RIPE mnt-by: RIPE-NCC-MNT created: 2002-09-16T10:35:19Z last-modified: 2015-08-14T12:02:57Z source: RIPE 23 Results With Related Objects Search term: 193.0.24.1 person: Brian Riddle address: IT Manager address: RIPE NCC - Operations address: Singel 258 address: 1016AB Amsterdam address: The Netherlands phone: +31 20 535 4444 fax-no: +31 20 535 4445 nic-hdl: BRD-RIPE mnt-by: RIPE-NCC-MNT created: 2006-02-08T11:28:31Z last-modified: 2006-09-14T16:14:51Z source: RIPE person: Jochem de Ruig address: RIPE NCC address: Singel 258 address: 1016AB Amsterdam address: The Netherlands phone: +31 20 535 4444 fax-no: +31 20 535 4445 nic-hdl: JDR-RIPE mnt-by: RIPE-NCC-MNT created: 2011-02-10T12:04:37Z last-modified: 2011-02-10T12:04:37Z source: RIPE route: 193.0.24.0/21 descr: RIPE-STOCKHOLM origin: AS201965 mnt-by: RIPE-NCC-MNT created: 2015-04-20T12:17:39Z last-modified: 2015-04-20T12:17:39Z source: RIPE route: 193.0.24.0/21 descr: RIPE-MEETINGS origin: AS2121 mnt-by: RIPE-NCC-MNT created: 2008-04-09T11:04:18Z last-modified: 2012-04-24T10:09:25Z source: RIPE inetnum: 193.0.24.0 - 193.0.30.255 netname: RIPENCC-MEETING-PUBLIC descr: RIPE NCC country: NL admin-c: JDR-RIPE admin-c: BRD-RIPE tech-c: OPS4-RIPE status: ASSIGNED PA mnt-by: RIPE-NCC-MNT created: 2013-10-09T07:58:22Z last-modified: 2013-10-09T08:34:09Z source: RIPE
route: 193.0.24.0/21 descr: RIPE-STOCKHOLM origin: AS201965 mnt-by: RIPE-NCC-MNT created: 2015-04-20T12:17:39Z last-modified: 2015-04-20T12:17:39Z source: RIPE 24 Results Without Related Objects Search term: -r 193.0.24.1 inetnum: 193.0.24.0 - 193.0.30.255 netname: RIPENCC-MEETING-PUBLIC descr: RIPE NCC country: NL admin-c: JDR-RIPE admin-c: BRD-RIPE tech-c: OPS4-RIPE status: ASSIGNED PA mnt-by: RIPE-NCC-MNT created: 2013-10-09T07:58:22Z last-modified: 2013-10-09T08:34:09Z source: RIPE route: 193.0.24.0/21 descr: RIPE-MEETINGS origin: AS2121 mnt-by: RIPE-NCC-MNT created: 2008-04-09T11:04:18Z last-modified: 2012-04-24T10:09:25Z source: RIPE
25 Navigating the Hierarchy • With IP space, you want to find what is under
 or above the inetnum object - Under = More Specific - Above = Less Specific • There are flags: -m, -M, -l, -L • Also in the “Hierarchy Flags” tab
26 More Specific inetnums: -m -m 193.0.24.0/21 193.0.24.0/21 /26 /25/24
27 More Specific inetnums: -M -M 193.0.24.0/21 193.0.24.0/21 /26 /25/24 /26
28 Less Specific inetnums: -l -l 193.0.25.0/24 193.0.24.0/21 193.0.25.0/24
29 Less Specific inetnums: -L -L 193.0.25.0/24 193.0.24.0/21 193.0.25.0/24 193/8 0/0
30 Where is the abuse-c? abuse@company inetnum inet6num organisation role org: organisation abuse-c: role abuse-mailbox:
31 Inverse Lookup
32 Referenced person object inet6num: 2001:db8::/32 descr: my IPv6 range mnt-by: RIPE-NCC-HM-MNT org: ORG-BB2-RIPE admin-c: JE777-RIPE tech-c: JD1-RIPE mntner: LIR-MNT admin-c: JD1-RIPE tech-c: LA789-RIPE mnt-by: LIR-MNT role: Bluelight Staff nic-hdl: BLS77-RIPE admin-c: JD1-RIPE address: Sesame Street 1 e-mail: staff@example.org aut-num: AS64551 descr: my AS number mnt-by: RIPE-NCC-HM-MNT org: ORG-BB2-RIPE tech-c: JD1-RIPE tech-c: LA789-RIPE person: John Smith nic-hdl: JD1-RIPE address: Sesame Street 1 phone: +1 555 0101 e-mail: john@example.org mnt-by: LIR-MNT -i person JD1-RIPE
33 Referenced person object inet6num: 2001:db8::/32 descr: my IPv6 range mnt-by: RIPE-NCC-HM-MNT org: ORG-BB2-RIPE admin-c: JE777-RIPE tech-c: JD1-RIPE mntner: LIR-MNT admin-c: JD1-RIPE tech-c: LA789-RIPE mnt-by: LIR-MNT role: Bluelight Staff nic-hdl: BLS77-RIPE admin-c: JD1-RIPE address: Sesame Street 1 e-mail: staff@example.org aut-num: AS64551 descr: my AS number mnt-by: RIPE-NCC-HM-MNT org: ORG-BB2-RIPE admin-c: JD1-RIPE tech-c: LA789-RIPE person: John Smith nic-hdl: JD1-RIPE address: Sesame Street 1 phone: +1 555 0101 e-mail: john@example.org mnt-by: LIR-MNT -i admin-c JD1-RIPE
34 Referenced Organisation inet6num: 2001:db8::/32 descr: My IPv6 range org: ORG-BB2-RIPE admin-c: JE777-RIPE tech-c: JD1-RIPE aut-num: AS64551 descr: my AS number org: ORG-BB2-RIPE admin-c: JE777-RIPE tech-c: JD1-RIPE -i org ORG-BB2-RIPE inetnum: 85.23.16.0/21 descr: My v4 allocation org: ORG-BB2-RIPE admin-c: JE777-RIPE tech-c: JD1-RIPE inetnum: 85.111.185.0/21 descr: Other v4 allocation org: ORG-BB2-RIPE admin-c: JE777-RIPE tech-c: JD1-RIPE organisation: ORG-BB2-RIPE admin-c: JD1-RIPE tech-c: LA789-RIPE abuse-c: AR789-RIPE mnt-by: LIR-MNT
35 Full Text Search
36 Full Text Search - Advanced
RIPEstat Explanation
38 What is RIPEstat? • One interface for multiple data sources http://stat.ripe.net/
39 What can you query? • IPv6 address • IPv4 address • ASN • Hostname • Country code
40 RIPEstat: • One interface for all IP resources related data - Registry data, routing, reverse DNS, active measurements, 3rd party data (blacklist, geolocation)
41 Default Results Widgets AS3333 More tabs with results
42 Create a RIPE NCC Access Account https://access.ripe.net
43 Registry Browser Widget - click on another object to refocus query
44 Registry Browser Widget - historic information one click away
45 Routing History Widget
46 Anti Abuse & Blacklist Entries
47 RIPE NCC WHOIS client Source code can be found here: ftp://ftp.ripe.net/ripe/tools/dbase/software/ripe-whois-client-3.2.2.tar.gz • Only to be used with RIPE WHOIS DB • ‘whois help’ show all options • --list-versions • --diff-versions <version-number:version-number> • --show-version <version-number>
48 RIPE NCC WHOIS client ivo$ /usr/local/bin/whois --list-versions 193.0.0.0/21 --list-versions 1 2003-03-17 13:15 ADD/UPD 2 2003-04-12 08:32 ADD/UPD 3 2003-05-22 13:20 ADD/UPD 4 2004-10-22 14:43 ADD/UPD 5 2004-10-31 03:08 ADD/UPD
49 RIPE NCC WHOIS client --show-version ivo$ /usr/local/bin/whois --show-version 2 193.0.0.0/21 inetnum: 193.0.0.0 - 193.0.7.255 netname: RIPE-NCC descr: RIPE Network Coordination Centre descr: Amsterdam, Netherlands remarks: Used for RIPE NCC infrastructure. country: NL admin-c: AMR68-RIPE tech-c: OPS4-RIPE status: ASSIGNED PI mnt-by: RIPE-NCC-MNT mnt-lower: RIPE-NCC-MNT source: RIPE # Filtered
50 RIPE NCC WHOIS client --diff-versions ivo$ /usr/local/bin/whois --diff-versions 2:3 193.0.0.0/21 % Difference between version 2 and 3 of object "193.0.0.0 - 193.0.7.255" @@ -7,2 +7,3 @@ admin-c: AMR68-RIPE +admin-c: RDK-RIPE tech-c: OPS4-RIPE
Questions

Empfohlen

New Developments in Address Policy and Community Tools
New Developments in Address Policy and Community ToolsNew Developments in Address Policy and Community Tools
New Developments in Address Policy and Community ToolsRIPE NCC
 
The RIPE Community and Ethical Considerations
The RIPE Community and Ethical ConsiderationsThe RIPE Community and Ethical Considerations
The RIPE Community and Ethical ConsiderationsRIPE NCC
 
RIPE Routing Information Service
RIPE Routing Information ServiceRIPE Routing Information Service
RIPE Routing Information ServiceRIPE NCC
 
RIPE Atlas
RIPE AtlasRIPE Atlas
RIPE AtlasRIPE NCC
 
Registry Data Quality
Registry Data QualityRegistry Data Quality
Registry Data QualityRIPE NCC
 
RIPE Atlas, Global Internet Measurement Network
RIPE Atlas, Global Internet Measurement NetworkRIPE Atlas, Global Internet Measurement Network
RIPE Atlas, Global Internet Measurement NetworkRIPE NCC
 
Technical Community - Working Together
Technical Community - Working TogetherTechnical Community - Working Together
Technical Community - Working TogetherRIPE NCC
 
RIPE NCC Measurement Data and Tools
RIPE NCC Measurement Data and ToolsRIPE NCC Measurement Data and Tools
RIPE NCC Measurement Data and ToolsRIPE NCC
 

Empfohlen

New Developments in Address Policy and Community Tools
New Developments in Address Policy and Community ToolsNew Developments in Address Policy and Community Tools
New Developments in Address Policy and Community ToolsRIPE NCC
 
The RIPE Community and Ethical Considerations
The RIPE Community and Ethical ConsiderationsThe RIPE Community and Ethical Considerations
The RIPE Community and Ethical ConsiderationsRIPE NCC
 
RIPE Routing Information Service
RIPE Routing Information ServiceRIPE Routing Information Service
RIPE Routing Information ServiceRIPE NCC
 
RIPE Atlas
RIPE AtlasRIPE Atlas
RIPE AtlasRIPE NCC
 
Registry Data Quality
Registry Data QualityRegistry Data Quality
Registry Data QualityRIPE NCC
 
RIPE Atlas, Global Internet Measurement Network
RIPE Atlas, Global Internet Measurement NetworkRIPE Atlas, Global Internet Measurement Network
RIPE Atlas, Global Internet Measurement NetworkRIPE NCC
 
Technical Community - Working Together
Technical Community - Working TogetherTechnical Community - Working Together
Technical Community - Working TogetherRIPE NCC
 
RIPE NCC Measurement Data and Tools
RIPE NCC Measurement Data and ToolsRIPE NCC Measurement Data and Tools
RIPE NCC Measurement Data and ToolsRIPE NCC
 
DDos Prevention and Mitigation
DDos Prevention and MitigationDDos Prevention and Mitigation
DDos Prevention and MitigationRIPE NCC
 
IPv6 Country Statistics
IPv6 Country StatisticsIPv6 Country Statistics
IPv6 Country StatisticsRIPE NCC
 
The (IPv6) Internet in Romania - RIPE NCC Data and Tools
The (IPv6) Internet in Romania - RIPE NCC Data and ToolsThe (IPv6) Internet in Romania - RIPE NCC Data and Tools
The (IPv6) Internet in Romania - RIPE NCC Data and ToolsRIPE NCC
 
RIPEstat
RIPEstatRIPEstat
RIPEstatRIPE NCC
 
The Future of IP Addresses
The Future of IP AddressesThe Future of IP Addresses
The Future of IP AddressesRIPE NCC
 
Applications of Internet Data
Applications of Internet DataApplications of Internet Data
Applications of Internet DataRIPE NCC
 
IPv6 Routing in Slovenia
IPv6 Routing in SloveniaIPv6 Routing in Slovenia
IPv6 Routing in SloveniaRIPE NCC
 
RIR Collaboration on RIPEstat
RIR Collaboration on RIPEstatRIR Collaboration on RIPEstat
RIR Collaboration on RIPEstatRIPE NCC
 
IP addressing policies, What does this mean? - APT Policy and Regulation Forum
IP addressing policies, What does this mean? - APT Policy and Regulation ForumIP addressing policies, What does this mean? - APT Policy and Regulation Forum
IP addressing policies, What does this mean? - APT Policy and Regulation ForumAPNIC
 
Open-IX: Improving interconnection through industry standards
Open-IX: Improving interconnection through industry standardsOpen-IX: Improving interconnection through industry standards
Open-IX: Improving interconnection through industry standardsInternet Society
 
RIPE NCC Data Sets for Researchers
RIPE NCC Data Sets for ResearchersRIPE NCC Data Sets for Researchers
RIPE NCC Data Sets for ResearchersRIPE NCC
 
Supporting Local Communities
Supporting Local CommunitiesSupporting Local Communities
Supporting Local CommunitiesRIPE NCC
 
Data Gathering and Analysis BoF- RipEstat
Data Gathering and Analysis BoF- RipEstatData Gathering and Analysis BoF- RipEstat
Data Gathering and Analysis BoF- RipEstatAPNIC
 
RIPE NCC Update
RIPE NCC UpdateRIPE NCC Update
RIPE NCC UpdateAPNIC
 
PLNOG 6: Sandra Brás - What’s hot at the RIPE NCC
PLNOG 6: Sandra Brás - What’s hot at the RIPE NCCPLNOG 6: Sandra Brás - What’s hot at the RIPE NCC
PLNOG 6: Sandra Brás - What’s hot at the RIPE NCCPROIDEA
 
RIPE NCC Update
RIPE NCC UpdateRIPE NCC Update
RIPE NCC UpdateAPNIC
 
Introduction to IP Addressing and Regional Internet Registries
Introduction to IP Addressing and Regional Internet RegistriesIntroduction to IP Addressing and Regional Internet Registries
Introduction to IP Addressing and Regional Internet RegistriesRIPE NCC
 
EC proposal: Formation of a Cooperation SIG, by Akinori Maemura [APNIC 38 / B...
EC proposal: Formation of a Cooperation SIG, by Akinori Maemura [APNIC 38 / B...EC proposal: Formation of a Cooperation SIG, by Akinori Maemura [APNIC 38 / B...
EC proposal: Formation of a Cooperation SIG, by Akinori Maemura [APNIC 38 / B...APNIC
 
Introduction to the RIPE NCC and the RIR System
Introduction to the RIPE NCC and the RIR SystemIntroduction to the RIPE NCC and the RIR System
Introduction to the RIPE NCC and the RIR SystemRIPE NCC
 
Global Reports - LACNIC
Global Reports - LACNICGlobal Reports - LACNIC
Global Reports - LACNICARIN
 
How to upgrade a country?
How to upgrade a country?How to upgrade a country?
How to upgrade a country?RIPE NCC
 
The State of the (Danish) Internet – Interpreting RIPE NCC Data and Measurements
The State of the (Danish) Internet – Interpreting RIPE NCC Data and MeasurementsThe State of the (Danish) Internet – Interpreting RIPE NCC Data and Measurements
The State of the (Danish) Internet – Interpreting RIPE NCC Data and MeasurementsRIPE NCC
 

Weitere ähnliche Inhalte

Was ist angesagt?

DDos Prevention and Mitigation
DDos Prevention and MitigationDDos Prevention and Mitigation
DDos Prevention and MitigationRIPE NCC
 
IPv6 Country Statistics
IPv6 Country StatisticsIPv6 Country Statistics
IPv6 Country StatisticsRIPE NCC
 
The (IPv6) Internet in Romania - RIPE NCC Data and Tools
The (IPv6) Internet in Romania - RIPE NCC Data and ToolsThe (IPv6) Internet in Romania - RIPE NCC Data and Tools
The (IPv6) Internet in Romania - RIPE NCC Data and ToolsRIPE NCC
 
The Future of IP Addresses
The Future of IP AddressesThe Future of IP Addresses
The Future of IP AddressesRIPE NCC
 
Applications of Internet Data
Applications of Internet DataApplications of Internet Data
Applications of Internet DataRIPE NCC
 
IPv6 Routing in Slovenia
IPv6 Routing in SloveniaIPv6 Routing in Slovenia
IPv6 Routing in SloveniaRIPE NCC
 
RIR Collaboration on RIPEstat
RIR Collaboration on RIPEstatRIR Collaboration on RIPEstat
RIR Collaboration on RIPEstatRIPE NCC
 
IP addressing policies, What does this mean? - APT Policy and Regulation Forum
IP addressing policies, What does this mean? - APT Policy and Regulation ForumIP addressing policies, What does this mean? - APT Policy and Regulation Forum
IP addressing policies, What does this mean? - APT Policy and Regulation ForumAPNIC
 
Open-IX: Improving interconnection through industry standards
Open-IX: Improving interconnection through industry standardsOpen-IX: Improving interconnection through industry standards
Open-IX: Improving interconnection through industry standardsInternet Society
 
RIPE NCC Data Sets for Researchers
RIPE NCC Data Sets for ResearchersRIPE NCC Data Sets for Researchers
RIPE NCC Data Sets for ResearchersRIPE NCC
 
Supporting Local Communities
Supporting Local CommunitiesSupporting Local Communities
Supporting Local CommunitiesRIPE NCC
 
Data Gathering and Analysis BoF- RipEstat
Data Gathering and Analysis BoF- RipEstatData Gathering and Analysis BoF- RipEstat
Data Gathering and Analysis BoF- RipEstatAPNIC
 
RIPE NCC Update
RIPE NCC UpdateRIPE NCC Update
RIPE NCC UpdateAPNIC
 
PLNOG 6: Sandra Brás - What’s hot at the RIPE NCC
PLNOG 6: Sandra Brás - What’s hot at the RIPE NCCPLNOG 6: Sandra Brás - What’s hot at the RIPE NCC
PLNOG 6: Sandra Brás - What’s hot at the RIPE NCCPROIDEA
 
RIPE NCC Update
RIPE NCC UpdateRIPE NCC Update
RIPE NCC UpdateAPNIC
 
Introduction to IP Addressing and Regional Internet Registries
Introduction to IP Addressing and Regional Internet RegistriesIntroduction to IP Addressing and Regional Internet Registries
Introduction to IP Addressing and Regional Internet RegistriesRIPE NCC
 
EC proposal: Formation of a Cooperation SIG, by Akinori Maemura [APNIC 38 / B...
EC proposal: Formation of a Cooperation SIG, by Akinori Maemura [APNIC 38 / B...EC proposal: Formation of a Cooperation SIG, by Akinori Maemura [APNIC 38 / B...
EC proposal: Formation of a Cooperation SIG, by Akinori Maemura [APNIC 38 / B...APNIC
 
Introduction to the RIPE NCC and the RIR System
Introduction to the RIPE NCC and the RIR SystemIntroduction to the RIPE NCC and the RIR System
Introduction to the RIPE NCC and the RIR SystemRIPE NCC
 
Global Reports - LACNIC
Global Reports - LACNICGlobal Reports - LACNIC
Global Reports - LACNICARIN
 

Was ist angesagt? (20)

DDos Prevention and Mitigation
DDos Prevention and MitigationDDos Prevention and Mitigation
DDos Prevention and Mitigation
 
IPv6 Country Statistics
IPv6 Country StatisticsIPv6 Country Statistics
IPv6 Country Statistics
 
The (IPv6) Internet in Romania - RIPE NCC Data and Tools
The (IPv6) Internet in Romania - RIPE NCC Data and ToolsThe (IPv6) Internet in Romania - RIPE NCC Data and Tools
The (IPv6) Internet in Romania - RIPE NCC Data and Tools
 
RIPEstat
RIPEstatRIPEstat
RIPEstat
 
The Future of IP Addresses
The Future of IP AddressesThe Future of IP Addresses
The Future of IP Addresses
 
Applications of Internet Data
Applications of Internet DataApplications of Internet Data
Applications of Internet Data
 
IPv6 Routing in Slovenia
IPv6 Routing in SloveniaIPv6 Routing in Slovenia
IPv6 Routing in Slovenia
 
RIR Collaboration on RIPEstat
RIR Collaboration on RIPEstatRIR Collaboration on RIPEstat
RIR Collaboration on RIPEstat
 
IP addressing policies, What does this mean? - APT Policy and Regulation Forum
IP addressing policies, What does this mean? - APT Policy and Regulation ForumIP addressing policies, What does this mean? - APT Policy and Regulation Forum
IP addressing policies, What does this mean? - APT Policy and Regulation Forum
 
Open-IX: Improving interconnection through industry standards
Open-IX: Improving interconnection through industry standardsOpen-IX: Improving interconnection through industry standards
Open-IX: Improving interconnection through industry standards
 
RIPE NCC Data Sets for Researchers
RIPE NCC Data Sets for ResearchersRIPE NCC Data Sets for Researchers
RIPE NCC Data Sets for Researchers
 
Supporting Local Communities
Supporting Local CommunitiesSupporting Local Communities
Supporting Local Communities
 
Data Gathering and Analysis BoF- RipEstat
Data Gathering and Analysis BoF- RipEstatData Gathering and Analysis BoF- RipEstat
Data Gathering and Analysis BoF- RipEstat
 
RIPE NCC Update
RIPE NCC UpdateRIPE NCC Update
RIPE NCC Update
 
PLNOG 6: Sandra Brás - What’s hot at the RIPE NCC
PLNOG 6: Sandra Brás - What’s hot at the RIPE NCCPLNOG 6: Sandra Brás - What’s hot at the RIPE NCC
PLNOG 6: Sandra Brás - What’s hot at the RIPE NCC
 
RIPE NCC Update
RIPE NCC UpdateRIPE NCC Update
RIPE NCC Update
 
Introduction to IP Addressing and Regional Internet Registries
Introduction to IP Addressing and Regional Internet RegistriesIntroduction to IP Addressing and Regional Internet Registries
Introduction to IP Addressing and Regional Internet Registries
 
EC proposal: Formation of a Cooperation SIG, by Akinori Maemura [APNIC 38 / B...
EC proposal: Formation of a Cooperation SIG, by Akinori Maemura [APNIC 38 / B...EC proposal: Formation of a Cooperation SIG, by Akinori Maemura [APNIC 38 / B...
EC proposal: Formation of a Cooperation SIG, by Akinori Maemura [APNIC 38 / B...
 
Introduction to the RIPE NCC and the RIR System
Introduction to the RIPE NCC and the RIR SystemIntroduction to the RIPE NCC and the RIR System
Introduction to the RIPE NCC and the RIR System
 
Global Reports - LACNIC
Global Reports - LACNICGlobal Reports - LACNIC
Global Reports - LACNIC
 

Andere mochten auch

How to upgrade a country?
How to upgrade a country?How to upgrade a country?
How to upgrade a country?RIPE NCC
 
The State of the (Danish) Internet – Interpreting RIPE NCC Data and Measurements
The State of the (Danish) Internet – Interpreting RIPE NCC Data and MeasurementsThe State of the (Danish) Internet – Interpreting RIPE NCC Data and Measurements
The State of the (Danish) Internet – Interpreting RIPE NCC Data and MeasurementsRIPE NCC
 
RIPE Atlas and IXPs "Stitchin' it up"
RIPE Atlas and IXPs "Stitchin' it up"RIPE Atlas and IXPs "Stitchin' it up"
RIPE Atlas and IXPs "Stitchin' it up"RIPE NCC
 
Transition of NTIA’s Stewardship of the IANA Functions
Transition of NTIA’s Stewardship of the IANA FunctionsTransition of NTIA’s Stewardship of the IANA Functions
Transition of NTIA’s Stewardship of the IANA FunctionsRIPE NCC
 
Countries, IXPs and RIPE Atlas
Countries, IXPs and RIPE AtlasCountries, IXPs and RIPE Atlas
Countries, IXPs and RIPE AtlasRIPE NCC
 
The State of the (Romanian) Internet
The State of the (Romanian) InternetThe State of the (Romanian) Internet
The State of the (Romanian) InternetRIPE NCC
 
Network Visualisation: Focus on RIPE Atlas
Network Visualisation: Focus on RIPE AtlasNetwork Visualisation: Focus on RIPE Atlas
Network Visualisation: Focus on RIPE AtlasRIPE NCC
 
Are Dutch Internet Paths Local - A Measurement Study Using RIPE Atlas
Are Dutch Internet Paths Local - A Measurement Study Using RIPE AtlasAre Dutch Internet Paths Local - A Measurement Study Using RIPE Atlas
Are Dutch Internet Paths Local - A Measurement Study Using RIPE AtlasRIPE NCC
 
IXP Traffic and Major Sports Events
IXP Traffic and Major Sports EventsIXP Traffic and Major Sports Events
IXP Traffic and Major Sports EventsRIPE NCC
 
RIPE Atlas and RIS at France-IX
RIPE Atlas and RIS at France-IXRIPE Atlas and RIS at France-IX
RIPE Atlas and RIS at France-IXRIPE NCC
 
RIPE Atlas - A Measurement Network
RIPE Atlas - A Measurement NetworkRIPE Atlas - A Measurement Network
RIPE Atlas - A Measurement NetworkRIPE NCC
 
The RIPE NCC, Internet Measurements and IXPs
The RIPE NCC, Internet Measurements and IXPsThe RIPE NCC, Internet Measurements and IXPs
The RIPE NCC, Internet Measurements and IXPsRIPE NCC
 
Update on the Why and How of IPv6 Deployment
Update on the Why and How of IPv6 DeploymentUpdate on the Why and How of IPv6 Deployment
Update on the Why and How of IPv6 DeploymentRIPE NCC
 
RIPE Atlas
RIPE AtlasRIPE Atlas
RIPE AtlasRIPE NCC
 
A Message About IPv6
A Message About IPv6A Message About IPv6
A Message About IPv6RIPE NCC
 
Network Visualisation Workshop
Network Visualisation WorkshopNetwork Visualisation Workshop
Network Visualisation WorkshopRIPE NCC
 
IPv6 and Internet of Things: A Nice Couple
IPv6 and Internet of Things: A Nice CoupleIPv6 and Internet of Things: A Nice Couple
IPv6 and Internet of Things: A Nice CoupleRIPE NCC
 
Measuring IPv6 Adoption
Measuring IPv6 AdoptionMeasuring IPv6 Adoption
Measuring IPv6 AdoptionRIPE NCC
 

Andere mochten auch (18)

How to upgrade a country?
How to upgrade a country?How to upgrade a country?
How to upgrade a country?
 
The State of the (Danish) Internet – Interpreting RIPE NCC Data and Measurements
The State of the (Danish) Internet – Interpreting RIPE NCC Data and MeasurementsThe State of the (Danish) Internet – Interpreting RIPE NCC Data and Measurements
The State of the (Danish) Internet – Interpreting RIPE NCC Data and Measurements
 
RIPE Atlas and IXPs "Stitchin' it up"
RIPE Atlas and IXPs "Stitchin' it up"RIPE Atlas and IXPs "Stitchin' it up"
RIPE Atlas and IXPs "Stitchin' it up"
 
Transition of NTIA’s Stewardship of the IANA Functions
Transition of NTIA’s Stewardship of the IANA FunctionsTransition of NTIA’s Stewardship of the IANA Functions
Transition of NTIA’s Stewardship of the IANA Functions
 
Countries, IXPs and RIPE Atlas
Countries, IXPs and RIPE AtlasCountries, IXPs and RIPE Atlas
Countries, IXPs and RIPE Atlas
 
The State of the (Romanian) Internet
The State of the (Romanian) InternetThe State of the (Romanian) Internet
The State of the (Romanian) Internet
 
Network Visualisation: Focus on RIPE Atlas
Network Visualisation: Focus on RIPE AtlasNetwork Visualisation: Focus on RIPE Atlas
Network Visualisation: Focus on RIPE Atlas
 
Are Dutch Internet Paths Local - A Measurement Study Using RIPE Atlas
Are Dutch Internet Paths Local - A Measurement Study Using RIPE AtlasAre Dutch Internet Paths Local - A Measurement Study Using RIPE Atlas
Are Dutch Internet Paths Local - A Measurement Study Using RIPE Atlas
 
IXP Traffic and Major Sports Events
IXP Traffic and Major Sports EventsIXP Traffic and Major Sports Events
IXP Traffic and Major Sports Events
 
RIPE Atlas and RIS at France-IX
RIPE Atlas and RIS at France-IXRIPE Atlas and RIS at France-IX
RIPE Atlas and RIS at France-IX
 
RIPE Atlas - A Measurement Network
RIPE Atlas - A Measurement NetworkRIPE Atlas - A Measurement Network
RIPE Atlas - A Measurement Network
 
The RIPE NCC, Internet Measurements and IXPs
The RIPE NCC, Internet Measurements and IXPsThe RIPE NCC, Internet Measurements and IXPs
The RIPE NCC, Internet Measurements and IXPs
 
Update on the Why and How of IPv6 Deployment
Update on the Why and How of IPv6 DeploymentUpdate on the Why and How of IPv6 Deployment
Update on the Why and How of IPv6 Deployment
 
RIPE Atlas
RIPE AtlasRIPE Atlas
RIPE Atlas
 
A Message About IPv6
A Message About IPv6A Message About IPv6
A Message About IPv6
 
Network Visualisation Workshop
Network Visualisation WorkshopNetwork Visualisation Workshop
Network Visualisation Workshop
 
IPv6 and Internet of Things: A Nice Couple
IPv6 and Internet of Things: A Nice CoupleIPv6 and Internet of Things: A Nice Couple
IPv6 and Internet of Things: A Nice Couple
 
Measuring IPv6 Adoption
Measuring IPv6 AdoptionMeasuring IPv6 Adoption
Measuring IPv6 Adoption
 

Ähnlich wie How RIPE NCC Tools Can Help with Online Investigations

RIPEstat, RIPE Atlas and RIS
RIPEstat, RIPE Atlas and RISRIPEstat, RIPE Atlas and RIS
RIPEstat, RIPE Atlas and RISRIPE NCC
 
RIPE NCC Operations and Analysis Tools
RIPE NCC Operations and Analysis ToolsRIPE NCC Operations and Analysis Tools
RIPE NCC Operations and Analysis ToolsRIPE NCC
 
Introducing the IRUSdataUK pilot webinar
Introducing the IRUSdataUK pilot webinarIntroducing the IRUSdataUK pilot webinar
Introducing the IRUSdataUK pilot webinarJisc
 
How to Ingest 16 Billion Records Per Day into your Hadoop Environment
How to Ingest 16 Billion Records Per Day into your Hadoop EnvironmentHow to Ingest 16 Billion Records Per Day into your Hadoop Environment
How to Ingest 16 Billion Records Per Day into your Hadoop EnvironmentDataWorks Summit
 
Tutorial: Using RIPEstat
Tutorial: Using RIPEstatTutorial: Using RIPEstat
Tutorial: Using RIPEstatRIPE NCC
 
RIPE NCC Tools
RIPE NCC ToolsRIPE NCC Tools
RIPE NCC ToolsRIPE NCC
 
RIPEstat, RIPE Atlas and the new DNSMON
RIPEstat, RIPE Atlas and the new DNSMONRIPEstat, RIPE Atlas and the new DNSMON
RIPEstat, RIPE Atlas and the new DNSMONRIPE NCC
 
RIR Report: RIPE NCC Update from ARIN 32
RIR Report: RIPE NCC Update from ARIN 32RIR Report: RIPE NCC Update from ARIN 32
RIR Report: RIPE NCC Update from ARIN 32ARIN
 
Cont-Forensic-Analytics-Dipto-14Apr2015-post
Cont-Forensic-Analytics-Dipto-14Apr2015-postCont-Forensic-Analytics-Dipto-14Apr2015-post
Cont-Forensic-Analytics-Dipto-14Apr2015-postDipto Chakravarty
 
RIPE NCC Tools and Measurements
RIPE NCC Tools and MeasurementsRIPE NCC Tools and Measurements
RIPE NCC Tools and MeasurementsRIPE NCC
 
RIPE & RIPE NCC/Using RIPE Atlas and RIPEstat for Network Analysis
RIPE & RIPE NCC/Using RIPE Atlas and RIPEstat for Network AnalysisRIPE & RIPE NCC/Using RIPE Atlas and RIPEstat for Network Analysis
RIPE & RIPE NCC/Using RIPE Atlas and RIPEstat for Network AnalysisRIPE NCC
 
Peering Day 2013
Peering Day 2013Peering Day 2013
Peering Day 2013RIPE NCC
 
RIPE NCC Data and Tools
RIPE NCC Data and ToolsRIPE NCC Data and Tools
RIPE NCC Data and ToolsRIPE NCC
 
RIPE NCC Measurements Tools Workshop: RIPEstat and RIPE Atlas
RIPE NCC Measurements Tools Workshop: RIPEstat and RIPE AtlasRIPE NCC Measurements Tools Workshop: RIPEstat and RIPE Atlas
RIPE NCC Measurements Tools Workshop: RIPEstat and RIPE AtlasAPNIC
 
IP Address Certification (RPKI)
IP Address Certification (RPKI)IP Address Certification (RPKI)
IP Address Certification (RPKI)RIPE NCC
 
Using the RIPE Atlas API for measuring IPv6 Reachability
Using the RIPE Atlas API for measuring IPv6 ReachabilityUsing the RIPE Atlas API for measuring IPv6 Reachability
Using the RIPE Atlas API for measuring IPv6 ReachabilityRIPE NCC
 
Large Scale Internet Measurements Infrastructures
Large Scale Internet Measurements InfrastructuresLarge Scale Internet Measurements Infrastructures
Large Scale Internet Measurements InfrastructuresRIPE NCC
 
More Measurements: Expanding RIPE Atlas Anchors
More Measurements: Expanding RIPE Atlas AnchorsMore Measurements: Expanding RIPE Atlas Anchors
More Measurements: Expanding RIPE Atlas AnchorsRIPE NCC
 
Logging/Request Tracing in Distributed Environment
Logging/Request Tracing in Distributed EnvironmentLogging/Request Tracing in Distributed Environment
Logging/Request Tracing in Distributed EnvironmentAPNIC
 
Apricot2017 Request tracing in distributed environment
Apricot2017 Request tracing in distributed environmentApricot2017 Request tracing in distributed environment
Apricot2017 Request tracing in distributed environmentHieu LE ☁
 

Ähnlich wie How RIPE NCC Tools Can Help with Online Investigations (20)

RIPEstat, RIPE Atlas and RIS
RIPEstat, RIPE Atlas and RISRIPEstat, RIPE Atlas and RIS
RIPEstat, RIPE Atlas and RIS
 
RIPE NCC Operations and Analysis Tools
RIPE NCC Operations and Analysis ToolsRIPE NCC Operations and Analysis Tools
RIPE NCC Operations and Analysis Tools
 
Introducing the IRUSdataUK pilot webinar
Introducing the IRUSdataUK pilot webinarIntroducing the IRUSdataUK pilot webinar
Introducing the IRUSdataUK pilot webinar
 
How to Ingest 16 Billion Records Per Day into your Hadoop Environment
How to Ingest 16 Billion Records Per Day into your Hadoop EnvironmentHow to Ingest 16 Billion Records Per Day into your Hadoop Environment
How to Ingest 16 Billion Records Per Day into your Hadoop Environment
 
Tutorial: Using RIPEstat
Tutorial: Using RIPEstatTutorial: Using RIPEstat
Tutorial: Using RIPEstat
 
RIPE NCC Tools
RIPE NCC ToolsRIPE NCC Tools
RIPE NCC Tools
 
RIPEstat, RIPE Atlas and the new DNSMON
RIPEstat, RIPE Atlas and the new DNSMONRIPEstat, RIPE Atlas and the new DNSMON
RIPEstat, RIPE Atlas and the new DNSMON
 
RIR Report: RIPE NCC Update from ARIN 32
RIR Report: RIPE NCC Update from ARIN 32RIR Report: RIPE NCC Update from ARIN 32
RIR Report: RIPE NCC Update from ARIN 32
 
Cont-Forensic-Analytics-Dipto-14Apr2015-post
Cont-Forensic-Analytics-Dipto-14Apr2015-postCont-Forensic-Analytics-Dipto-14Apr2015-post
Cont-Forensic-Analytics-Dipto-14Apr2015-post
 
RIPE NCC Tools and Measurements
RIPE NCC Tools and MeasurementsRIPE NCC Tools and Measurements
RIPE NCC Tools and Measurements
 
RIPE & RIPE NCC/Using RIPE Atlas and RIPEstat for Network Analysis
RIPE & RIPE NCC/Using RIPE Atlas and RIPEstat for Network AnalysisRIPE & RIPE NCC/Using RIPE Atlas and RIPEstat for Network Analysis
RIPE & RIPE NCC/Using RIPE Atlas and RIPEstat for Network Analysis
 
Peering Day 2013
Peering Day 2013Peering Day 2013
Peering Day 2013
 
RIPE NCC Data and Tools
RIPE NCC Data and ToolsRIPE NCC Data and Tools
RIPE NCC Data and Tools
 
RIPE NCC Measurements Tools Workshop: RIPEstat and RIPE Atlas
RIPE NCC Measurements Tools Workshop: RIPEstat and RIPE AtlasRIPE NCC Measurements Tools Workshop: RIPEstat and RIPE Atlas
RIPE NCC Measurements Tools Workshop: RIPEstat and RIPE Atlas
 
IP Address Certification (RPKI)
IP Address Certification (RPKI)IP Address Certification (RPKI)
IP Address Certification (RPKI)
 
Using the RIPE Atlas API for measuring IPv6 Reachability
Using the RIPE Atlas API for measuring IPv6 ReachabilityUsing the RIPE Atlas API for measuring IPv6 Reachability
Using the RIPE Atlas API for measuring IPv6 Reachability
 
Large Scale Internet Measurements Infrastructures
Large Scale Internet Measurements InfrastructuresLarge Scale Internet Measurements Infrastructures
Large Scale Internet Measurements Infrastructures
 
More Measurements: Expanding RIPE Atlas Anchors
More Measurements: Expanding RIPE Atlas AnchorsMore Measurements: Expanding RIPE Atlas Anchors
More Measurements: Expanding RIPE Atlas Anchors
 
Logging/Request Tracing in Distributed Environment
Logging/Request Tracing in Distributed EnvironmentLogging/Request Tracing in Distributed Environment
Logging/Request Tracing in Distributed Environment
 
Apricot2017 Request tracing in distributed environment
Apricot2017 Request tracing in distributed environmentApricot2017 Request tracing in distributed environment
Apricot2017 Request tracing in distributed environment
 

Mehr von RIPE NCC

Navigating IP Addresses: Insights from your Regional Internet Registry
Navigating IP Addresses: Insights from your Regional Internet RegistryNavigating IP Addresses: Insights from your Regional Internet Registry
Navigating IP Addresses: Insights from your Regional Internet RegistryRIPE NCC
 
Traces of Power: Internet Governance and Climate Action
Traces of Power: Internet Governance and Climate ActionTraces of Power: Internet Governance and Climate Action
Traces of Power: Internet Governance and Climate ActionRIPE NCC
 
Governing Environmental Sustainability in Tech
Governing Environmental Sustainability in TechGoverning Environmental Sustainability in Tech
Governing Environmental Sustainability in TechRIPE NCC
 
Gerardo-Viviers-RPKI-presentation-DKNOG14.pdf
Gerardo-Viviers-RPKI-presentation-DKNOG14.pdfGerardo-Viviers-RPKI-presentation-DKNOG14.pdf
Gerardo-Viviers-RPKI-presentation-DKNOG14.pdfRIPE NCC
 
LIA HESTINA - Minimising impact before incidents occur with RIPE Atlas and RIS
LIA HESTINA - Minimising impact before incidents occur with RIPE Atlas and RISLIA HESTINA - Minimising impact before incidents occur with RIPE Atlas and RIS
LIA HESTINA - Minimising impact before incidents occur with RIPE Atlas and RISRIPE NCC
 
Intro to RIPE and RIPE NCC: RIPE Atlas workshop
Intro to RIPE and RIPE NCC: RIPE Atlas workshopIntro to RIPE and RIPE NCC: RIPE Atlas workshop
Intro to RIPE and RIPE NCC: RIPE Atlas workshopRIPE NCC
 
IGF UA - Dialog with I_ organisations - Alena Muavska RIPE NCC.pdf
IGF UA - Dialog with I_ organisations - Alena Muavska RIPE NCC.pdfIGF UA - Dialog with I_ organisations - Alena Muavska RIPE NCC.pdf
IGF UA - Dialog with I_ organisations - Alena Muavska RIPE NCC.pdfRIPE NCC
 
Opportunities for Youth in IG - Alena Muravska RIPE NCC.pdf
Opportunities for Youth in IG - Alena Muravska RIPE NCC.pdfOpportunities for Youth in IG - Alena Muravska RIPE NCC.pdf
Opportunities for Youth in IG - Alena Muravska RIPE NCC.pdfRIPE NCC
 
RIPE NCC Internet Measurement Tools
RIPE NCC Internet Measurement ToolsRIPE NCC Internet Measurement Tools
RIPE NCC Internet Measurement ToolsRIPE NCC
 
IPv6 in Central Europe and the Baltics
IPv6 in Central Europe and the BalticsIPv6 in Central Europe and the Baltics
IPv6 in Central Europe and the BalticsRIPE NCC
 
RPKI For Routing Security
RPKI For Routing SecurityRPKI For Routing Security
RPKI For Routing SecurityRIPE NCC
 
SEEDIG 8 - Alena Muravska RIPE NCC.pdf
SEEDIG 8 - Alena Muravska RIPE NCC.pdfSEEDIG 8 - Alena Muravska RIPE NCC.pdf
SEEDIG 8 - Alena Muravska RIPE NCC.pdfRIPE NCC
 
Know Your Network: Why Every Network Operator Should Host RIPE Atlas
Know Your Network: Why Every Network Operator Should Host RIPE AtlasKnow Your Network: Why Every Network Operator Should Host RIPE Atlas
Know Your Network: Why Every Network Operator Should Host RIPE AtlasRIPE NCC
 
Minimising Impact When Incidents Occur With RIPE Atlas
Minimising Impact When Incidents Occur With RIPE AtlasMinimising Impact When Incidents Occur With RIPE Atlas
Minimising Impact When Incidents Occur With RIPE AtlasRIPE NCC
 
RIPE NCC Internet Measurement Services
RIPE NCC Internet Measurement ServicesRIPE NCC Internet Measurement Services
RIPE NCC Internet Measurement ServicesRIPE NCC
 
Spotting Latency Issues with RIPE Atlas
Spotting Latency Issues with RIPE AtlasSpotting Latency Issues with RIPE Atlas
Spotting Latency Issues with RIPE AtlasRIPE NCC
 
Spotting Latency Issues with RIPE Atlas
Spotting Latency Issues with RIPE AtlasSpotting Latency Issues with RIPE Atlas
Spotting Latency Issues with RIPE AtlasRIPE NCC
 
Spotting Latency Issues with RIPE Atlas
Spotting Latency Issues with RIPE AtlasSpotting Latency Issues with RIPE Atlas
Spotting Latency Issues with RIPE AtlasRIPE NCC
 
111 views of Swiss Internet Infrastructure
111 views of Swiss Internet Infrastructure111 views of Swiss Internet Infrastructure
111 views of Swiss Internet InfrastructureRIPE NCC
 
The RIPE NCC’s View of IPv6 in Sweden
The RIPE NCC’s View of IPv6 in SwedenThe RIPE NCC’s View of IPv6 in Sweden
The RIPE NCC’s View of IPv6 in SwedenRIPE NCC
 

Mehr von RIPE NCC (20)

Navigating IP Addresses: Insights from your Regional Internet Registry
Navigating IP Addresses: Insights from your Regional Internet RegistryNavigating IP Addresses: Insights from your Regional Internet Registry
Navigating IP Addresses: Insights from your Regional Internet Registry
 
Traces of Power: Internet Governance and Climate Action
Traces of Power: Internet Governance and Climate ActionTraces of Power: Internet Governance and Climate Action
Traces of Power: Internet Governance and Climate Action
 
Governing Environmental Sustainability in Tech
Governing Environmental Sustainability in TechGoverning Environmental Sustainability in Tech
Governing Environmental Sustainability in Tech
 
Gerardo-Viviers-RPKI-presentation-DKNOG14.pdf
Gerardo-Viviers-RPKI-presentation-DKNOG14.pdfGerardo-Viviers-RPKI-presentation-DKNOG14.pdf
Gerardo-Viviers-RPKI-presentation-DKNOG14.pdf
 
LIA HESTINA - Minimising impact before incidents occur with RIPE Atlas and RIS
LIA HESTINA - Minimising impact before incidents occur with RIPE Atlas and RISLIA HESTINA - Minimising impact before incidents occur with RIPE Atlas and RIS
LIA HESTINA - Minimising impact before incidents occur with RIPE Atlas and RIS
 
Intro to RIPE and RIPE NCC: RIPE Atlas workshop
Intro to RIPE and RIPE NCC: RIPE Atlas workshopIntro to RIPE and RIPE NCC: RIPE Atlas workshop
Intro to RIPE and RIPE NCC: RIPE Atlas workshop
 
IGF UA - Dialog with I_ organisations - Alena Muavska RIPE NCC.pdf
IGF UA - Dialog with I_ organisations - Alena Muavska RIPE NCC.pdfIGF UA - Dialog with I_ organisations - Alena Muavska RIPE NCC.pdf
IGF UA - Dialog with I_ organisations - Alena Muavska RIPE NCC.pdf
 
Opportunities for Youth in IG - Alena Muravska RIPE NCC.pdf
Opportunities for Youth in IG - Alena Muravska RIPE NCC.pdfOpportunities for Youth in IG - Alena Muravska RIPE NCC.pdf
Opportunities for Youth in IG - Alena Muravska RIPE NCC.pdf
 
RIPE NCC Internet Measurement Tools
RIPE NCC Internet Measurement ToolsRIPE NCC Internet Measurement Tools
RIPE NCC Internet Measurement Tools
 
IPv6 in Central Europe and the Baltics
IPv6 in Central Europe and the BalticsIPv6 in Central Europe and the Baltics
IPv6 in Central Europe and the Baltics
 
RPKI For Routing Security
RPKI For Routing SecurityRPKI For Routing Security
RPKI For Routing Security
 
SEEDIG 8 - Alena Muravska RIPE NCC.pdf
SEEDIG 8 - Alena Muravska RIPE NCC.pdfSEEDIG 8 - Alena Muravska RIPE NCC.pdf
SEEDIG 8 - Alena Muravska RIPE NCC.pdf
 
Know Your Network: Why Every Network Operator Should Host RIPE Atlas
Know Your Network: Why Every Network Operator Should Host RIPE AtlasKnow Your Network: Why Every Network Operator Should Host RIPE Atlas
Know Your Network: Why Every Network Operator Should Host RIPE Atlas
 
Minimising Impact When Incidents Occur With RIPE Atlas
Minimising Impact When Incidents Occur With RIPE AtlasMinimising Impact When Incidents Occur With RIPE Atlas
Minimising Impact When Incidents Occur With RIPE Atlas
 
RIPE NCC Internet Measurement Services
RIPE NCC Internet Measurement ServicesRIPE NCC Internet Measurement Services
RIPE NCC Internet Measurement Services
 
Spotting Latency Issues with RIPE Atlas
Spotting Latency Issues with RIPE AtlasSpotting Latency Issues with RIPE Atlas
Spotting Latency Issues with RIPE Atlas
 
Spotting Latency Issues with RIPE Atlas
Spotting Latency Issues with RIPE AtlasSpotting Latency Issues with RIPE Atlas
Spotting Latency Issues with RIPE Atlas
 
Spotting Latency Issues with RIPE Atlas
Spotting Latency Issues with RIPE AtlasSpotting Latency Issues with RIPE Atlas
Spotting Latency Issues with RIPE Atlas
 
111 views of Swiss Internet Infrastructure
111 views of Swiss Internet Infrastructure111 views of Swiss Internet Infrastructure
111 views of Swiss Internet Infrastructure
 
The RIPE NCC’s View of IPv6 in Sweden
The RIPE NCC’s View of IPv6 in SwedenThe RIPE NCC’s View of IPv6 in Sweden
The RIPE NCC’s View of IPv6 in Sweden
 

Kürzlich hochgeladen

Apidays Singapore 2024 - Scalable LLM APIs for AI and Generative AI Applicati...
Apidays Singapore 2024 - Scalable LLM APIs for AI and Generative AI Applicati...Apidays Singapore 2024 - Scalable LLM APIs for AI and Generative AI Applicati...
Apidays Singapore 2024 - Scalable LLM APIs for AI and Generative AI Applicati...apidays
 
Automating Google Workspace (GWS) & more with Apps Script
Automating Google Workspace (GWS) & more with Apps ScriptAutomating Google Workspace (GWS) & more with Apps Script
Automating Google Workspace (GWS) & more with Apps Scriptwesley chun
 
Strategize a Smooth Tenant-to-tenant Migration and Copilot Takeoff
Strategize a Smooth Tenant-to-tenant Migration and Copilot TakeoffStrategize a Smooth Tenant-to-tenant Migration and Copilot Takeoff
Strategize a Smooth Tenant-to-tenant Migration and Copilot Takeoffsammart93
 
Apidays New York 2024 - Accelerating FinTech Innovation by Vasa Krishnan, Fin...
Apidays New York 2024 - Accelerating FinTech Innovation by Vasa Krishnan, Fin...Apidays New York 2024 - Accelerating FinTech Innovation by Vasa Krishnan, Fin...
Apidays New York 2024 - Accelerating FinTech Innovation by Vasa Krishnan, Fin...apidays
 
Strategies for Landing an Oracle DBA Job as a Fresher
Strategies for Landing an Oracle DBA Job as a FresherStrategies for Landing an Oracle DBA Job as a Fresher
Strategies for Landing an Oracle DBA Job as a FresherRemote DBA Services
 
ICT role in 21st century education and its challenges
ICT role in 21st century education and its challengesICT role in 21st century education and its challenges
ICT role in 21st century education and its challengesrafiqahmad00786416
 
Artificial Intelligence Chap.5 : Uncertainty
Artificial Intelligence Chap.5 : UncertaintyArtificial Intelligence Chap.5 : Uncertainty
Artificial Intelligence Chap.5 : UncertaintyKhushali Kathiriya
 
GenAI Risks & Security Meetup 01052024.pdf
GenAI Risks & Security Meetup 01052024.pdfGenAI Risks & Security Meetup 01052024.pdf
GenAI Risks & Security Meetup 01052024.pdflior mazor
 
Powerful Google developer tools for immediate impact! (2023-24 C)
Powerful Google developer tools for immediate impact! (2023-24 C)Powerful Google developer tools for immediate impact! (2023-24 C)
Powerful Google developer tools for immediate impact! (2023-24 C)wesley chun
 
Navi Mumbai Call Girls 🥰 8617370543 Service Offer VIP Hot Model
Navi Mumbai Call Girls 🥰 8617370543 Service Offer VIP Hot ModelNavi Mumbai Call Girls 🥰 8617370543 Service Offer VIP Hot Model
Navi Mumbai Call Girls 🥰 8617370543 Service Offer VIP Hot ModelDeepika Singh
 
TrustArc Webinar - Unlock the Power of AI-Driven Data Discovery
TrustArc Webinar - Unlock the Power of AI-Driven Data DiscoveryTrustArc Webinar - Unlock the Power of AI-Driven Data Discovery
TrustArc Webinar - Unlock the Power of AI-Driven Data DiscoveryTrustArc
 
Connector Corner: Accelerate revenue generation using UiPath API-centric busi...
Connector Corner: Accelerate revenue generation using UiPath API-centric busi...Connector Corner: Accelerate revenue generation using UiPath API-centric busi...
Connector Corner: Accelerate revenue generation using UiPath API-centric busi...DianaGray10
 
Real Time Object Detection Using Open CV
Real Time Object Detection Using Open CVReal Time Object Detection Using Open CV
Real Time Object Detection Using Open CVKhem
 
presentation ICT roal in 21st century education
presentation ICT roal in 21st century educationpresentation ICT roal in 21st century education
presentation ICT roal in 21st century educationjfdjdjcjdnsjd
 
A Beginners Guide to Building a RAG App Using Open Source Milvus
A Beginners Guide to Building a RAG App Using Open Source MilvusA Beginners Guide to Building a RAG App Using Open Source Milvus
A Beginners Guide to Building a RAG App Using Open Source MilvusZilliz
 
Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...
Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...
Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...Drew Madelung
 
AWS Community Day CPH - Three problems of Terraform
AWS Community Day CPH - Three problems of TerraformAWS Community Day CPH - Three problems of Terraform
AWS Community Day CPH - Three problems of TerraformAndrey Devyatkin
 
AXA XL - Insurer Innovation Award Americas 2024
AXA XL - Insurer Innovation Award Americas 2024AXA XL - Insurer Innovation Award Americas 2024
AXA XL - Insurer Innovation Award Americas 2024The Digital Insurer
 
2024: Domino Containers - The Next Step. News from the Domino Container commu...
2024: Domino Containers - The Next Step. News from the Domino Container commu...2024: Domino Containers - The Next Step. News from the Domino Container commu...
2024: Domino Containers - The Next Step. News from the Domino Container commu...Martijn de Jong
 

Kürzlich hochgeladen (20)

Apidays Singapore 2024 - Scalable LLM APIs for AI and Generative AI Applicati...
Apidays Singapore 2024 - Scalable LLM APIs for AI and Generative AI Applicati...Apidays Singapore 2024 - Scalable LLM APIs for AI and Generative AI Applicati...
Apidays Singapore 2024 - Scalable LLM APIs for AI and Generative AI Applicati...
 
Automating Google Workspace (GWS) & more with Apps Script
Automating Google Workspace (GWS) & more with Apps ScriptAutomating Google Workspace (GWS) & more with Apps Script
Automating Google Workspace (GWS) & more with Apps Script
 
Strategize a Smooth Tenant-to-tenant Migration and Copilot Takeoff
Strategize a Smooth Tenant-to-tenant Migration and Copilot TakeoffStrategize a Smooth Tenant-to-tenant Migration and Copilot Takeoff
Strategize a Smooth Tenant-to-tenant Migration and Copilot Takeoff
 
Apidays New York 2024 - Accelerating FinTech Innovation by Vasa Krishnan, Fin...
Apidays New York 2024 - Accelerating FinTech Innovation by Vasa Krishnan, Fin...Apidays New York 2024 - Accelerating FinTech Innovation by Vasa Krishnan, Fin...
Apidays New York 2024 - Accelerating FinTech Innovation by Vasa Krishnan, Fin...
 
Strategies for Landing an Oracle DBA Job as a Fresher
Strategies for Landing an Oracle DBA Job as a FresherStrategies for Landing an Oracle DBA Job as a Fresher
Strategies for Landing an Oracle DBA Job as a Fresher
 
ICT role in 21st century education and its challenges
ICT role in 21st century education and its challengesICT role in 21st century education and its challenges
ICT role in 21st century education and its challenges
 
Artificial Intelligence Chap.5 : Uncertainty
Artificial Intelligence Chap.5 : UncertaintyArtificial Intelligence Chap.5 : Uncertainty
Artificial Intelligence Chap.5 : Uncertainty
 
GenAI Risks & Security Meetup 01052024.pdf
GenAI Risks & Security Meetup 01052024.pdfGenAI Risks & Security Meetup 01052024.pdf
GenAI Risks & Security Meetup 01052024.pdf
 
Powerful Google developer tools for immediate impact! (2023-24 C)
Powerful Google developer tools for immediate impact! (2023-24 C)Powerful Google developer tools for immediate impact! (2023-24 C)
Powerful Google developer tools for immediate impact! (2023-24 C)
 
Navi Mumbai Call Girls 🥰 8617370543 Service Offer VIP Hot Model
Navi Mumbai Call Girls 🥰 8617370543 Service Offer VIP Hot ModelNavi Mumbai Call Girls 🥰 8617370543 Service Offer VIP Hot Model
Navi Mumbai Call Girls 🥰 8617370543 Service Offer VIP Hot Model
 
TrustArc Webinar - Unlock the Power of AI-Driven Data Discovery
TrustArc Webinar - Unlock the Power of AI-Driven Data DiscoveryTrustArc Webinar - Unlock the Power of AI-Driven Data Discovery
TrustArc Webinar - Unlock the Power of AI-Driven Data Discovery
 
Connector Corner: Accelerate revenue generation using UiPath API-centric busi...
Connector Corner: Accelerate revenue generation using UiPath API-centric busi...Connector Corner: Accelerate revenue generation using UiPath API-centric busi...
Connector Corner: Accelerate revenue generation using UiPath API-centric busi...
 
Real Time Object Detection Using Open CV
Real Time Object Detection Using Open CVReal Time Object Detection Using Open CV
Real Time Object Detection Using Open CV
 
+971581248768>> SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHA...
+971581248768>> SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHA...+971581248768>> SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHA...
+971581248768>> SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHA...
 
presentation ICT roal in 21st century education
presentation ICT roal in 21st century educationpresentation ICT roal in 21st century education
presentation ICT roal in 21st century education
 
A Beginners Guide to Building a RAG App Using Open Source Milvus
A Beginners Guide to Building a RAG App Using Open Source MilvusA Beginners Guide to Building a RAG App Using Open Source Milvus
A Beginners Guide to Building a RAG App Using Open Source Milvus
 
Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...
Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...
Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...
 
AWS Community Day CPH - Three problems of Terraform
AWS Community Day CPH - Three problems of TerraformAWS Community Day CPH - Three problems of Terraform
AWS Community Day CPH - Three problems of Terraform
 
AXA XL - Insurer Innovation Award Americas 2024
AXA XL - Insurer Innovation Award Americas 2024AXA XL - Insurer Innovation Award Americas 2024
AXA XL - Insurer Innovation Award Americas 2024
 
2024: Domino Containers - The Next Step. News from the Domino Container commu...
2024: Domino Containers - The Next Step. News from the Domino Container commu...2024: Domino Containers - The Next Step. News from the Domino Container commu...
2024: Domino Containers - The Next Step. News from the Domino Container commu...
 

How RIPE NCC Tools Can Help with Online Investigations

  • 1. Ivo Dijkhuis & Mirjam Kühne | TF-CSIRT 50 | 24-01-2017 How RIPE NCC tools can help with online investigations
  • 3. I. Dijkhuis & M. Kühne | TF-CSIRT 50 | 24 January 2017 3 RIPE Atlas Coverage
  • 4. I. Dijkhuis & M. Kühne | TF-CSIRT 50 | 24 January 2017 4 RIPE Atlas - atlas.ripe.net • RIPE Atlas is a global active measurements platform • Probes hosted by volunteers • Data publicly available "RIPE Atlas: A Global Internet Measurement Network" (PDF). Internet Protocol Journal 18. September 2015. ISSN 1944-1134.
  • 5. I. Dijkhuis & M. Kühne | TF-CSIRT 50 | 24 January 2017 5 Zoom in to Spain
  • 6. I. Dijkhuis & M. Kühne | TF-CSIRT 50 | 24 January 2017 6 RIPE Atlas Numbers • 9,400 RIPE Atlas probes connected worldwide • 4,100 Measurements collected per second • 35,000 user-defined measurements per week
  • 7. I. Dijkhuis & M. Kühne | TF-CSIRT 50 | 24 January 2017 7 RIPE Atlas Measurements • Built-in Global measurements towards root name servers - Visualised as Internet traffic maps • Built-in Regional measurements towards RIPE Atlas anchors • Users can run customised measurements - ping, traceroute, DNS, SSL/TLS, NTP and HTTP (only towards RIPE Atlas anchors)
  • 9. I. Dijkhuis & M. Kühne | TF-CSIRT 50 | 24 January 2017 9 Most Popular Features • Powerful and informative visualisations • APIs to start measurements and get results • Command line interface • Streaming data for real-time results • “Time Travel”
  • 10. I. Dijkhuis & M. Kühne | TF-CSIRT 50 | 24 January 2017 10 Monitoring using RIPE Atlas • Integrate “status checks” with existing monitoring tools (such as Icinga, Nagios) • Using real-time data streaming - Server monitoring - Detecting and visualising outages • Developed by community: “RIPE Atlas Monitor”
  • 11. I. Dijkhuis & M. Kühne | TF-CSIRT 50 | 24 January 2017 11 Time Travel • Allows you to look at historical data • For Internet maps and measurement results
  • 12. I. Dijkhuis & M. Kühne | TF-CSIRT 50 | 24 January 2017 12 Use Cases on RIPE Labs • Measuring Internet Access Disruptions - https://labs.ripe.net/Members/emileaben/internet-access- disruption-in-turkey - https://labs.ripe.net/Members/emileaben/internet-access- disruption-in-the-gambia-2016 • Measuring DNS Censorship and Hijacking - https://labs.ripe.net/Members/babak_farrokhi/operator- level-dns-redirection - https://labs.ripe.net/Members/stephane_bortzmeyer/dns- censorship-dns-lies-seen-by-atlas-probes
  • 13. I. Dijkhuis & M. Kühne | TF-CSIRT 50 | 24 January 2017 13 Use Cases on RIPE Labs • Monitoring connectivity and connectivity problems - https://labs.ripe.net/Members/annika_wickert/using-ripe- atlas-to-monitor-game-service-connectivity - https://labs.ripe.net/Members/jason_read/using-ripe-atlas- to-measure-cloud-connectivity - https://labs.ripe.net/Members/stephane_bortzmeyer/ using-ripe-atlas-to-debug-network-connectivity-problems
  • 14. I. Dijkhuis & M. Kühne | TF-CSIRT 50 | 24 January 2017 14 More Information • https://atlas.ripe.net/ • https://labs.ripe.net/atlas • Webinars, Training Courses • Targeted workshops
  • 16. 16 RIPE Database • Public Internet resource and routing registry database • Answers: - Who is using an address block? - How can I contact them? • All 5 RIRs have their own database - http://www.iana.org/whois
  • 17. 17 Other Registries • IANA - http://www.iana.org/numbers • Regional Internet Registries - http://whois.arin.net/ui/advanced.jsp - http://www.apnic.net/apnic-info/whois_search - http://www.afrinic.net/en/services/whois-query - http://lacnic.net/cgi-bin/lacnic/whois?lg=EN
  • 18. 18 RIPE Database Objects • Resources - inetnum, inet6num, aut-num • Contact - organisation, person, role • Routing - route, route6 • Reverse DNS - domain • Object protection - mntner
  • 19. 19 Objects Are Related To Each Other IP range org: contact: Organisation contact: Person org:
  • 20. • Web interface • Command line 20 Querying the RIPE Database • Full Text Search • Restful API (XML/JSON) 193.0.24.1 ✓
  • 23. role: RIPE NCC Operations address: Singel 258 address: 1016 AB Amsterdam address: The Netherlands phone: +31 20 535 4444 fax-no: +31 20 535 4445 abuse-mailbox: abuse@ripe.net admin-c: JDR-RIPE admin-c: BRD-RIPE tech-c: GL7321-RIPE tech-c: SO2011-RIPE tech-c: TOL666-RIPE tech-c: MG18669-RIPE tech-c: RDM397-RIPE nic-hdl: OPS4-RIPE mnt-by: RIPE-NCC-MNT created: 2002-09-16T10:35:19Z last-modified: 2015-08-14T12:02:57Z source: RIPE 23 Results With Related Objects Search term: 193.0.24.1 person: Brian Riddle address: IT Manager address: RIPE NCC - Operations address: Singel 258 address: 1016AB Amsterdam address: The Netherlands phone: +31 20 535 4444 fax-no: +31 20 535 4445 nic-hdl: BRD-RIPE mnt-by: RIPE-NCC-MNT created: 2006-02-08T11:28:31Z last-modified: 2006-09-14T16:14:51Z source: RIPE person: Jochem de Ruig address: RIPE NCC address: Singel 258 address: 1016AB Amsterdam address: The Netherlands phone: +31 20 535 4444 fax-no: +31 20 535 4445 nic-hdl: JDR-RIPE mnt-by: RIPE-NCC-MNT created: 2011-02-10T12:04:37Z last-modified: 2011-02-10T12:04:37Z source: RIPE route: 193.0.24.0/21 descr: RIPE-STOCKHOLM origin: AS201965 mnt-by: RIPE-NCC-MNT created: 2015-04-20T12:17:39Z last-modified: 2015-04-20T12:17:39Z source: RIPE route: 193.0.24.0/21 descr: RIPE-MEETINGS origin: AS2121 mnt-by: RIPE-NCC-MNT created: 2008-04-09T11:04:18Z last-modified: 2012-04-24T10:09:25Z source: RIPE inetnum: 193.0.24.0 - 193.0.30.255 netname: RIPENCC-MEETING-PUBLIC descr: RIPE NCC country: NL admin-c: JDR-RIPE admin-c: BRD-RIPE tech-c: OPS4-RIPE status: ASSIGNED PA mnt-by: RIPE-NCC-MNT created: 2013-10-09T07:58:22Z last-modified: 2013-10-09T08:34:09Z source: RIPE
  • 24. route: 193.0.24.0/21 descr: RIPE-STOCKHOLM origin: AS201965 mnt-by: RIPE-NCC-MNT created: 2015-04-20T12:17:39Z last-modified: 2015-04-20T12:17:39Z source: RIPE 24 Results Without Related Objects Search term: -r 193.0.24.1 inetnum: 193.0.24.0 - 193.0.30.255 netname: RIPENCC-MEETING-PUBLIC descr: RIPE NCC country: NL admin-c: JDR-RIPE admin-c: BRD-RIPE tech-c: OPS4-RIPE status: ASSIGNED PA mnt-by: RIPE-NCC-MNT created: 2013-10-09T07:58:22Z last-modified: 2013-10-09T08:34:09Z source: RIPE route: 193.0.24.0/21 descr: RIPE-MEETINGS origin: AS2121 mnt-by: RIPE-NCC-MNT created: 2008-04-09T11:04:18Z last-modified: 2012-04-24T10:09:25Z source: RIPE
  • 25. 25 Navigating the Hierarchy • With IP space, you want to find what is under
 or above the inetnum object - Under = More Specific - Above = Less Specific • There are flags: -m, -M, -l, -L • Also in the “Hierarchy Flags” tab
  • 26. 26 More Specific inetnums: -m -m 193.0.24.0/21 193.0.24.0/21 /26 /25/24
  • 27. 27 More Specific inetnums: -M -M 193.0.24.0/21 193.0.24.0/21 /26 /25/24 /26
  • 28. 28 Less Specific inetnums: -l -l 193.0.25.0/24 193.0.24.0/21 193.0.25.0/24
  • 29. 29 Less Specific inetnums: -L -L 193.0.25.0/24 193.0.24.0/21 193.0.25.0/24 193/8 0/0
  • 30. 30 Where is the abuse-c? abuse@company inetnum inet6num organisation role org: organisation abuse-c: role abuse-mailbox:
  • 32. 32 Referenced person object inet6num: 2001:db8::/32 descr: my IPv6 range mnt-by: RIPE-NCC-HM-MNT org: ORG-BB2-RIPE admin-c: JE777-RIPE tech-c: JD1-RIPE mntner: LIR-MNT admin-c: JD1-RIPE tech-c: LA789-RIPE mnt-by: LIR-MNT role: Bluelight Staff nic-hdl: BLS77-RIPE admin-c: JD1-RIPE address: Sesame Street 1 e-mail: staff@example.org aut-num: AS64551 descr: my AS number mnt-by: RIPE-NCC-HM-MNT org: ORG-BB2-RIPE tech-c: JD1-RIPE tech-c: LA789-RIPE person: John Smith nic-hdl: JD1-RIPE address: Sesame Street 1 phone: +1 555 0101 e-mail: john@example.org mnt-by: LIR-MNT -i person JD1-RIPE
  • 33. 33 Referenced person object inet6num: 2001:db8::/32 descr: my IPv6 range mnt-by: RIPE-NCC-HM-MNT org: ORG-BB2-RIPE admin-c: JE777-RIPE tech-c: JD1-RIPE mntner: LIR-MNT admin-c: JD1-RIPE tech-c: LA789-RIPE mnt-by: LIR-MNT role: Bluelight Staff nic-hdl: BLS77-RIPE admin-c: JD1-RIPE address: Sesame Street 1 e-mail: staff@example.org aut-num: AS64551 descr: my AS number mnt-by: RIPE-NCC-HM-MNT org: ORG-BB2-RIPE admin-c: JD1-RIPE tech-c: LA789-RIPE person: John Smith nic-hdl: JD1-RIPE address: Sesame Street 1 phone: +1 555 0101 e-mail: john@example.org mnt-by: LIR-MNT -i admin-c JD1-RIPE
  • 34. 34 Referenced Organisation inet6num: 2001:db8::/32 descr: My IPv6 range org: ORG-BB2-RIPE admin-c: JE777-RIPE tech-c: JD1-RIPE aut-num: AS64551 descr: my AS number org: ORG-BB2-RIPE admin-c: JE777-RIPE tech-c: JD1-RIPE -i org ORG-BB2-RIPE inetnum: 85.23.16.0/21 descr: My v4 allocation org: ORG-BB2-RIPE admin-c: JE777-RIPE tech-c: JD1-RIPE inetnum: 85.111.185.0/21 descr: Other v4 allocation org: ORG-BB2-RIPE admin-c: JE777-RIPE tech-c: JD1-RIPE organisation: ORG-BB2-RIPE admin-c: JD1-RIPE tech-c: LA789-RIPE abuse-c: AR789-RIPE mnt-by: LIR-MNT
  • 36. 36 Full Text Search - Advanced
  • 38. 38 What is RIPEstat? • One interface for multiple data sources http://stat.ripe.net/
  • 39. 39 What can you query? • IPv6 address • IPv4 address • ASN • Hostname • Country code
  • 40. 40 RIPEstat: • One interface for all IP resources related data - Registry data, routing, reverse DNS, active measurements, 3rd party data (blacklist, geolocation)
  • 42. 42 Create a RIPE NCC Access Account https://access.ripe.net
  • 43. 43 Registry Browser Widget - click on another object to refocus query
  • 44. 44 Registry Browser Widget - historic information one click away
  • 46. 46 Anti Abuse & Blacklist Entries
  • 47. 47 RIPE NCC WHOIS client Source code can be found here: ftp://ftp.ripe.net/ripe/tools/dbase/software/ripe-whois-client-3.2.2.tar.gz • Only to be used with RIPE WHOIS DB • ‘whois help’ show all options • --list-versions • --diff-versions <version-number:version-number> • --show-version <version-number>
  • 48. 48 RIPE NCC WHOIS client ivo$ /usr/local/bin/whois --list-versions 193.0.0.0/21 --list-versions 1 2003-03-17 13:15 ADD/UPD 2 2003-04-12 08:32 ADD/UPD 3 2003-05-22 13:20 ADD/UPD 4 2004-10-22 14:43 ADD/UPD 5 2004-10-31 03:08 ADD/UPD
  • 49. 49 RIPE NCC WHOIS client --show-version ivo$ /usr/local/bin/whois --show-version 2 193.0.0.0/21 inetnum: 193.0.0.0 - 193.0.7.255 netname: RIPE-NCC descr: RIPE Network Coordination Centre descr: Amsterdam, Netherlands remarks: Used for RIPE NCC infrastructure. country: NL admin-c: AMR68-RIPE tech-c: OPS4-RIPE status: ASSIGNED PI mnt-by: RIPE-NCC-MNT mnt-lower: RIPE-NCC-MNT source: RIPE # Filtered
  • 50. 50 RIPE NCC WHOIS client --diff-versions ivo$ /usr/local/bin/whois --diff-versions 2:3 193.0.0.0/21 % Difference between version 2 and 3 of object "193.0.0.0 - 193.0.7.255" @@ -7,2 +7,3 @@ admin-c: AMR68-RIPE +admin-c: RDK-RIPE tech-c: OPS4-RIPE