Hey Guys, I am a researcher at the University of Southern California ( https://steel.isi.edu/ ), and I have been working on making Blacklists more effective by combining different sources of Blacklists, and creating a Blacklists specific for a particular network.
Though I have devised a mechanism to generate these blacklists, I am not finding a suitable evaluation metric. It would be great if somebody could give me a dataset of source IP addresses of emails received by your network which have been marked as HAM/SPAM by Spamassassin for the year 2016. I do not require the entire SPAM/HAM emails. Using this , I could evaluate the false positives/ true positives of my technique. I had posted a similar question in the previous thread, but that did not get much response. Looking forward to your replies!