Section 31

Section 31 is May Mobility's advanced intelligence tool based on Flan Scan and Google Tsunami.

We have published our scanner under the Apache 2.0 Licence, and it can be found on our open source GitLab repository: https://gitlab.com/maymobility/information-technology/section31

Purpose

Why are we performing network scanning and monitoring? To put it simply, it’s the least invasive way to find potential threats on a network. We utilize active and passive monitoring from multiple endpoints. If you are actively being scanned, it will be from a May IP address listed in our Trusted IP range.

If you're getting scanned by Section 31, it is for one of the following reasons:

You're located inside the May Mobility network
You're connecting to May Mobility internal resources
There are May Mobility resources located on your network, and automated testing is taking place

How can I stop this?

If you're getting scanned by Section 31, and you believe you don't fall into any of the above categories, please send an email to [email protected] with your IP information and the offending IPs.

Purpose​

How can I stop this?​

Purpose

How can I stop this?