The Shadowserver Foundation NetBIOS Scanning Project
OVERVIEW
NETBIOSSCAN.SHADOWSERVER.ORG TRAFFIC
Date Range
Date Range
Date Range
LINKS TO WEBSITE
WHAT DOES NETBIOSSCAN.SHADOWSERVER.ORG LOOK LIKE?
NETBIOSSCAN.SHADOWSERVER.ORG SERVER
SERVER SOFTWARE
We identified that this website is implementing the Apache/2.4.18 (Ubuntu) server.SITE TITLE
The Shadowserver Foundation NetBIOS Scanning ProjectDESCRIPTION
Open NetBIOS Scanning Project. If you are looking at this page, then more than likely, you noticed a scan coming from this server across your network andor poking at NetBIOS. The Shadowserver Foundation is currently undertaking a project to search for publicly accessible devices that have NetBIOS running and answering Name Resolution queries. The goal of this project is to identify openly accessible NetBIOS services and report them back to the network owners for remediation. Reswodahs ta nac bar.PARSED CONTENT
The website netbiosscan.shadowserver.org states the following, "If you are looking at this page, then more than likely, you noticed a scan coming from this server across your network andor poking at NetBIOS." I analyzed that the website said " The Shadowserver Foundation is currently undertaking a project to search for publicly accessible devices that have NetBIOS running and answering Name Resolution queries." They also stated " The goal of this project is to identify openly accessible NetBIOS services and report them back to the network owners for remediation."ANALYZE OTHER WEBSITES
As was recently reported by Trend Micro. Information on these vulnerable devices has been incorporated into our reports. And are being reported on a daily basis. We are querying all computers with routable IPv4 .
The Shadowserver Foundation is currently undertaking a project to search for publicly accessible devices that have NTP running and answering Mode 7 queries for MON GET LIST. The goal of this project is to identify openly accessible NTP services and report them back to the network owners for remediation. If you would like t.
Open Quote of the Day Service Scanning Project. These devices have the potential to be used in UDP amplification attacks and if at all possible, we would like to see these services made un-available to miscreants that would misuse these resources. Servers that are configured this way have been incorporated into our reports.
Open Redis Key-Value Store Scanning Project. The Shadowserver Foundation is currently undertaking a project to search for publicly accessible devices that have the Redis service running. The goal of this project is to identify openly accessible systems that have Redis running and report them back to the network owners for remediation.
The Shadowserver Foundation is currently undertaking a project to search for publicly accessible devices that have SNMP running. The goal of this project is to identify openly accessible SNMP services and report them back to the network owners for remediation. Servers that are configured this way will be incorporated into our reports.