Maltrail is an open-source network traffic detection system designed to spot malicious or suspicious activity. It works by checking traffic against publicly available blacklists, as well as static lists compiled from antivirus reports and user-defined sources. These “trails” can include domain names, URLs, IP addresses, or even HTTP User-Agent values. On top of that, Maltrail can use optional heuristic methods to identify new or unknown threats, such as emerging malware. Maltrail follows a Traffic -> … More →
The post Maltrail: Open-source malicious traffic detection system appeared first on Help Net Security.
http://news.poseidon-us.com/TNh2dQ
