FBI Tor Malware Analysis – [...] In April 2013, a piece of malware was found embedded in Freedom Hosting's darknet server that would exploit a security hole in a particular web browser and execute code on the user's computer. This code gathered some information about the user and sent it to a server in Virginia and then crashed – it had no obvious malicious intent that is so characteristic of malware. It was therefore theorised that the FBI, who have offices in Virginia, and who have 'form' for writing malware, may have authored it – this now appears to be true. [...]
TCP Traffic Analyzer (Yahoo! Developer Network Blog) – You probably have questions like these about traffic on a TCP (Transmission Control Protocol) server (or client):<br />
* How many connections lasted more (or less) than X milliseconds?<br />
* How many connections needed more than N attempts to succeed?<br />
* What is the distribution of connection duration or connection throughput?<br />
* What is the distribution of connection duration or throughput for connections in which the server or client sent more than N bytes?<br />
* What specific IP addresses and ports had connections that lasted between 50 and 100 milliseconds long?<br />
You can get answers to these questions (and more) using Yahoo!'s TCP Traffic Analyzer (yconalyzer), available as an open-source project via free download.