Main Nav

Hello,

Here at the University of Tampa we are beginning the process in finding a solution that will do Bot detection. We have been looking at Damballa and would like to know if anyone is using this product and how well it’s working. Would also like to know if anyone is using a different vendor. We would be interested in hearing how well it works in your environment. Please feel free to contact off list is you would like. Thanks

Bill Arnold

 

William I. Arnold IV

Network Security Engineer

University of Tampa

warnold@ut.edu

813-253-6284

 

Comments

www.fireeye.com

 

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Donald J. Schattle II

Information Security Officer

GLB-Act Coordinator

Providence College

schattle@providence.edu

401.865.1558

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

********************************

Statement of Confidentiality

 

The information contained in this electronic message and any attachments to this message are intended for the exclusive use of the addressee(s) and may contain confidential or privileged information.  If you are not the intended recipient, please notify the sender immediately and destroy all copies of this message and any attachments.  Your cooperation is appreciated.

 

Message from bsigmo15@uncc.edu


Thanks,

 

Aaron Sigmon | Sr. Information Security Engineer

UNC Charlotte | Information and Technology Services

9201 University City Blvd. | Charlotte, NC 28223

Phone: 704.687.1289

bsigmo15@uncc.edu | http://www.uncc.edu

-------------------------------------------------------------------------------------

If you are not the intended recipient of this transmission or a person responsible for delivering it to the intended recipient, any disclosure, copying, distribution, or other use of any of the information in this transmission is strictly prohibited.  If you have received this transmission in error, please notify me immediately by email or by telephone at 704.687.1289.  Thank you. 


From: WILLIAM I ARNOLD <WARNOLD@UT.EDU>
Reply-To: The EDUCAUSE Security Constituent Group Listserv <SECURITY@LISTSERV.EDUCAUSE.EDU>
Date: Wednesday, September 19, 2012 10:22 AM
To: "SECURITY@LISTSERV.EDUCAUSE.EDU" <SECURITY@LISTSERV.EDUCAUSE.EDU>
Subject: [SECURITY] Botnet Detection Systems

Hello,

Here at the University of Tampa we are beginning the process in finding a solution that will do Bot detection. We have been looking at Damballa and would like to know if anyone is using this product and how well it’s working. Would also like to know if anyone is using a different vendor. We would be interested in hearing how well it works in your environment. Please feel free to contact off list is you would like. Thanks

Bill Arnold

 

William I. Arnold IV

Network Security Engineer

University of Tampa

warnold@ut.edu

813-253-6284

 

Hello,

 

I have personal experience with FireEye (HW appliance) and Seculert (SaaS model). I believe both tools provide tremendous value. I believe that the differing deployment models – local hardware appliance vs. SaaS  is a key decision making point and it speaks to the locally available resources that will be tasked with using and maintaining the solution.

 

I have no personal experience with Damballa, but have hear lots of good things. I believe NetWitness is also a viable player in this space.

 

Regards,

Andrew Calo

 

Andrew Calo | Information Security and Data Privacy Administrator | Administrative Computing Department

Bentley University | 175 Forest Street | Waltham, MA 02452

PH: 781.891.2498 | acalo@bentley.edu

 

 

 

 

We use both the Fireeye and the Palo Alto boxes and the combination has very effective in controlling bots and most other malware problems.

 

Martin

 

Martin Patrick

Information Services

Tarrant County College District

martin.patrick@tccd.edu | www.tccd.edu

 

Surprised no one has yet mentioned Tipping Point.  It has been quite good at detecting and preventing malware, including bots.
best,
Dennis Bohn
Manager of Network and Systems
Adelphi University
bohn@adelphi.edu
5168773327


Message from afsin@taskiran.org

Hi,

We deploy Check Point's Anti Bot Software Blade and it is successfully deployed on some banks and universities/collages.

AntiBot Software Blade has Multi-Tiered Detection Engine can detect bots and bots' communication via repudiation based, inbound C&C communication or to internet bot activation. Also Check Point Thread Cloud supports Anti-Bot Infrastructure.

Also with Anti-Bot Software Blade and Check Point's Blade Architecture you can have a Firewall, IPS, Application Control and Anti Virus options.

I strongly recommend you to make a PoC with Check Point. 

http://www.checkpoint.com/campaigns/anti-bot/index.html
http://www.checkpoint.com/products/anti-bot-software-blade/index.html
http://www.youtube.com/watch?v=PaykuZZhujc



Afşin TAŞKIRAN
Security Consultant, Turkey
Mobile: +90 (532) 410 38 52
http://www.enderunix.org/afsin/
http://tr.linkedin.com/in/afsintaskiran



2012/9/20 Dennis Bohn <bohn@adelphi.edu>
Surprised no one has yet mentioned Tipping Point.  It has been quite good at detecting and preventing malware, including bots.
best,
Dennis Bohn
Manager of Network and Systems
Adelphi University
bohn@adelphi.edu
5168773327



Close
Close


Annual Conference
September 29–October 2
Register Now!

Events for all Levels and Interests

Whether you're looking for a conference to attend face-to-face to connect with peers, or for an online event for team professional development, see what's upcoming.

Close

Digital Badges
Member recognition effort
Earn yours >

Career Center


Leadership and Management Programs

EDUCAUSE Institute
Project Management

 

 

Jump Start Your Career Growth

Explore EDUCAUSE professional development opportunities that match your career aspirations and desired level of time investment through our interactive online guide.

 

Close
EDUCAUSE organizes its efforts around three IT Focus Areas

 

 

Join These Programs If Your Focus Is

Close

Get on the Higher Ed IT Map

Employees of EDUCAUSE member institutions and organizations are invited to create individual profiles.
 

 

Close

2014 Strategic Priorities

  • Building the Profession
  • IT as a Game Changer
  • Foundations


Learn More >

Uncommon Thinking for the Common Good™

EDUCAUSE is the foremost community of higher education IT leaders and professionals.