The Ethical Hacker Network

Latest Additions

Who's Online

EH-Net > Ethical Hacking Discussions and Related Certifications > Malware (Moderator: don) > Botnets

Pages: [1] Go Down

	Author	Topic: Botnets (Read 5294 times)
0 Members and 1 Guest are viewing this topic.

justme

Newbie

Offline

Posts: 10

Botnets

« on: March 26, 2008, 12:14:33 AM »

Does anyone have any recommendations on books/sites that are doing botnet research. Technical details and the coding behind them (not just the news stories of x number of infections).

Thanks


	Logged

spaces_are_evil

Andrew Waite

Hero Member

Offline

Posts: 928

Re: Botnets

« Reply #1 on: March 26, 2008, 04:09:30 AM »

The Honeynet Project (http://www.honeynet.org/), SANs Reading Room (http://www.sans.org/reading_room/) and Cyber-TA (http://www.cyber-ta.org/) are good places to start in this field.

I've mentioned this in another thread (http://www.ethicalhacker.net/component/option,com_smf/Itemid,54/topic,1910.msg7621/#msg7621) but Steve Gibsons analysis of DDoS attacks using botnets make an interesting (but slightly dated read). Can be difficult to find though Cry

Happy Hunting


	Logged

-- http://www.infosanity.co.uk
-- http://blog.infosanity.co.uk

pseud0

Recruiters
Full Member

Offline

Posts: 208

Re: Botnets

« Reply #2 on: March 26, 2008, 12:42:18 PM »

Just an addition to RR's post:

http://www.honeynet.org/papers/bots/


	Logged

CISSP, CISM, CISA, GCIH, GREM, CEH, HMFIC, KTHXBIROFLCOPTER

don

Editor-In-Chief
Administrator
Hero Member

Offline

Posts: 4165

Editor-In-Chief

Re: Botnets

« Reply #3 on: March 26, 2008, 09:45:07 PM »

Lance's HoneyNet Project is without a doubt the place to start. But also look at:

Virtual Honeypots: From Botnet Tracking to Intrusion Detection

And more info can be found here with an endorsement by Lance himself:

http://www.honeyd.org/

Hope this helps,
Don


	Logged

CISSP, MCSE, CSTA, Security+ SME

Andrew Waite

Hero Member

Offline

Posts: 928

Re: Botnets

« Reply #4 on: March 27, 2008, 03:35:38 AM »

Quote from: don on March 26, 2008, 09:45:07 PM

Virtual Honeypots: From Botnet Tracking to Intrusion Detection

Don,

I've taken a look at this book on Amazon a few times but haven't been able to find a copy in store to take a quick shuffty at. I assume from your post it's worth the outlay?

While I can find a tenuous link; is there anyway for me to connection the H affliation-type stuff with the UK (or other) Amazon sites? Currency conversion is starting to make my head hurt Wink


	Logged

-- http://www.infosanity.co.uk
-- http://blog.infosanity.co.uk

Andrew Waite

Hero Member

Offline

Posts: 928

Re: Botnets

« Reply #5 on: March 27, 2008, 09:05:21 AM »

Coming off the back of this thread I've found both a review and sample chapter on LSO (don't know why I didn't think to check here earlier) by Chris Gates, thanks man. Review can be found here: http://www.learnsecurityonline.com/index.php?option=com_content&task=view&id=224&Itemid=85)

Sample chapter can be found here for your studying pleasure http://www.informit.com/content/images/9780321336323/samplechapter/0321336321_CH11.pdf


« Last Edit: March 27, 2008, 09:39:13 AM by RoleReversal »	Logged

-- http://www.infosanity.co.uk
-- http://blog.infosanity.co.uk

don

Editor-In-Chief
Administrator
Hero Member

Offline

Posts: 4165

Editor-In-Chief

Re: Botnets

« Reply #6 on: March 29, 2008, 08:53:37 PM »

Or you could look here:

http://www.ethicalhacker.net/component/option,com_smf/Itemid,54/topic,1816.0/

RoleReversal - Short answer...yes. Get the book. Use our Amazon search box on the right side of the page. Every little bit helps. Wink

Thanks,
Don