Login  |  Help  |  Contact Us

 

The PREDICT Repository

Welcome to PREDICT, the Protected Repository for the Defense of Infrastructure Against Cyber Threats. PREDICT can quickly and easily provide qualified developers and evaluators with regularly updated network operations data they can use in their cyber security research.

PREDICT is supported by the Department of Homeland Security, Science & Technology Directorate.

Our distributed repository of data hosts and providers located at major universities and other venues helps researchers generate repeatable results and save time and financial resources by not having to invest in data collection and storage capacities.

Learn more about the repository by exploring the tabs above and browse our data catalog to see what kinds of data are available.

.

PREDICT Dataset Highlight

GT Malware Passive DNS Data
By Paul Royal
Georgia Tech

Each day, the Georgia Tech Information Security Center (GTISC) processes many thousands of previously unseen, suspect Windows executable files. To derive network-level information that can help make the possible maliciousness of these files self-identifying, each executable is run in a sterile, isolated environment for a short period of time, with limited access to the Internet.



Each executable’s use of the Domain Name System (DNS) is recorded and used to create 4-tuple comprising the executable’s MD5 hash, the date in which the executable was processed, the qname (domain name) of the DNS query, and (if the query was of type A) a resolve IP address for the domain name.

Between 2011 and 2014, more than 8.5 million unique executables processed by GTISC made at least one use of the DNS. In aggregate, this information represents a special kind of passive DNS database for suspect and known malicious software, which GTISC believes will be useful for a variety of research and operational purposes.

The database is now available through PREDICT as an unrestricted dataset, and is labeled GT Malware Passive DNS Data.
https://www.predict.org/Default.aspx?tabid=104&dsn=Georgia%20Tech%20Malware%20Passive%20DNS%20Data

News and Events

Welcome, United Kingdom...

Welcome, Israel...

Netalyzr Data Now Available...

Internet Atlas Now Available Through PREDICT...

Welcome, Australia...

Select News and Events to View:

New This Week

  • Enhancements made to the Dataset Catalog Page functionality 

Frequently Asked Questions 


Account requests
Dataset requests
Data Providers
Researchers

Browser Note:

Chrome is the preferred browser for best portal performance.

Privacy Statement   |   Portal Terms of Use   |   Adobe Reader Plug-In   |   Copyright © 2005-2014, RTI International   |   v7.3.200