Bot-hunting with Baskerville
Leverage Machine Learning to defend against DDoS
Manual identification and mitigation of (DDoS) attacks on websites is a difficult and time-consuming task with many challenges.
This is where Baskerville comes in.
Baskerville is an open-source Security Analytics Engine, a system to identify the attacks (currently) directed to Deflect protected websites as they happen and give the infrastructure the time to respond properly. It uses Machine Learning, Anomaly Detection more specifically, to distinguish between normal and abnormal traffic.
Its main advantage is that it does not need a labeled dataset to operate, thus, it is trained on mostly normal web traffic.
Currently we’re working on transforming Baskerville into a Clearinghouse and serve more than just Deflect clients. This work can be found under the develop branch and will be released in the main branch soon.
Full disclosure: I’ve been working on Baskerville for the past three+ years as a Lead Developer, along with a very small team of people. Let me know if you have any questions, I’d be more than happy to provide answers.