ARAKIS

Welcome to the public dashboard of ARAKIS, an early warning system operated by CERT Polska. ARAKIS aggregates and correlates data from various sources, including honeypots, darknets, firewalls and antivirus systems in order to detect new threats. The dashboard provides a snapshot of activity on the Internet based on data gathered from a selected group of sensors.

The polar chart plots alerts as generated by ARAKIS system over the last 24 hours. The public version of the chart plots the NCLUS (new cluster) alarm, generated by a clustering algorithm that identifies new packet payloads seen by a honeypot. This new kind of payload may be an indication of a new exploit being used in the wild. Three other, less sophisticated alarms - NPORT,NSNORT,SWEEP are also plotted (see the FAQ for more details). Each alarm can be examined in more detail, by clicking on the type of alarm in the polar chart legend.