This web page documents our datasets related to DNS backscatter. DNS Backscatter is all reverse-DNS queries that are sent in reaction to some network-wide event, like scanning or spamming. (See also our datasets about DNS privacy, backscatter and anycast.) Our datasets are available upon request.
In this paper we describe methods and analysis we developed for DNS backscatter: 
And we later extended extends our understanding about methods and usability we developed for DNS backscatter: 
We list all datatasets used in the paper below (and in Table 1 of the paper). Some of those datasets are not publicly available, but some datasets are available upon request.
If you have specific research needs that require datasets marked “not currently available”, please contact the paper authors.
We adapted the DNS backscatter technique for IPv6 in: 
Please contact the authors for availability of the datasets for this paper.
DITL data is network packet captures in pcap format. Data has been host anonymized, where the low-order 8 bits are scrabled with prefix-preserving anonymization.
For ANT-project or PREDICT data see requests.html for details about how to get these datasets.
DITL datasets are also available throuhg DNS-OARC.