• What is NETDB version one (NETDB.IO V1)

    NETDB.IO VERSION ONE


    The first version of netdb, back in the time 2015
    I create the first version of netdb with a rapid prototype development software strategy. I use to index the internet Layer  and 4 of the OSI Model, looking for any device/host/thing supporting TCP/IP/UPD/SNMP.  Autonomous Scanners were working 24 hours a day 365, monitoring all internet infrastructure based on  HTTP, SSH, Telnet, SNMP, DNS, Modbus and others.The architecture for this prototype were the following:

    • For database: using a mongodb.
    • For the webapp: following RIA architecture I had selected EXTJS(now called SENCHA) and then I move into NODEJS + expressJS.
    • For the webservice: php v4 the we move into expressJS.
    • For the scanners: python script using socket library.
    • For the Geolocation: see here about how to use the maxmind database.
    • For the netblock information: I used this script https://github.com/jamesjara/netblock-backbone 
    • For the hosting: Heroku service.

    Old Architecture,  netdb v1
    "NetDB is self-service software with real-time scanners across countries, querying information to all sensor and IoT data wherever it exists globally(vendor name,device name, brand,version,etc), and then propagate the data into multiple platforms in an analytical ecosystem. Data is propagated to our Big Data Platform Apache Lucene in JSON format, to be analyzed at scale with our Search Engine Client in NodeJs."

    Features supported by Netdb V1:


    • Bitcoin payments
    • Anonymous 100% experience
    • Stored certificates
    • Search by tags
    Netdb was monitoring more than 50 ports but also storing the certificates SSL/TLS by storing the PEM into plain text, so the user can search into the certificates key/value. Allowing also specific or full search text  for  example "cert: healthcare", "cert: not before 2013", "cert: siemens" and allowing multiple operators "Country: US cert: healtcare Autonomous System Operator: AS: TELEFONICA AS: MEDICAL , AS: Hospital".

    Search by tag and SSL certificate overview

    netdb v1 search by tag and SSL certificate overview

    First Launch 23-10-2015

    First Launch 23-10-2015

    Search by operator country

    netdb operator country

    Search by search by tag (using query builder)

    Search by search by tag (using query builder)

    Search by operator server jetty

    Operator "server" searches for text strings in the http header that collects our crawler Server: jetty

    Looking industrial devices based on the metadata of the http headers Server: schneider

    Looking industrial devices based on the metadata of the http headers Server: schneider

    IPV6

    IPV6

     Search by ASN

    Search by ASN

    What happened to netDB v1?

    As you already know, NETDB database were deleted by somebody of the team, the lack of investment for supporting the snapshots in our hadoop warehouse tooks it toll. While traveling around the world in so many information security conferences I discover a better idea which is NETDB v2.

    But..
    Infinite thanks to everybody who support NETDB v1. APPRECIATED


  • 0 comments:

    Post a Comment