The Ethical Hacker Network - Analysis of Kraken

Latest Additions

Who's Online

EH-Net Donations

Google Ads

ChicagoCon 2008f

EH-Net News Feeds

Latest Additions

Book Recommendations

RoleReversal

Sr. Member

Offline

Posts: 434

Analysis of Kraken

« on: April 29, 2008, 07:49:57 AM »

Interesting reading fresh out of Tipping Point/DV Labs.

One article detailing an analysis and reverse engineering of a Kraken bot and another explains how the gained knowledge can be used to better infiltrate the Kraken botnet and possibly fight back.

Whilst the analysis article is interesting I must confess parts went over my head. The part that I found most interesting is the ability to gain control of portions of the botnet (4%->14% quoted over a seven day period). This invariably came back to the 'good worm' concept, although as stated by the authors this particular system is reactive rather than proactive, and more controllable.

Question is does this scenario provide a valid, ethical method for the security community to fight back against the rise of botnets? I'm still undecided...


	Logged

A little bit of sanity:
http://www.infosanity.co.uk

oleDB

Full Member

Offline

Posts: 228

Re: Analysis of Kraken

« Reply #1 on: April 29, 2008, 09:36:36 AM »

thanks for the link, it was a good read


	Logged

ElCapitan

Newbie

Offline

Posts: 5

Unanimous FTP: the #1 threat to copyrights!

Re: Analysis of Kraken

« Reply #2 on: May 18, 2008, 09:14:07 PM »

Very good read. Thanks.

It might be noble to fight back by gaining control of portions of the bot net, but my ethical way would be to call the appropriate law enforcement organization.

I know it sounds weak, but as you can see, this is a pretty sophisticated attack and there is likely a lot of financial gain to be made here. It might be analogous to going under cover with the mafia.


	Logged

Pages: [1] Go Up

« previous next »

Support EH-Net

ChicagoCon 2008f

Support EH-Net by
Buying all of your
Amazon items using
the search bar above.

Try CBT Nuggets Free!

Recent Forum Topics

Tutorials : I need security....Please help (6) by NetStrikr
Career Central : CEH PEN Testing Fees (5) by Ketchup
News from the Outside World : Fyodor Explains TCP DOS attack (3) by Ketchup
Hardware : Encryption (5) by dalepearson
Other : Exploit Questions (12) by ChrisG
OSCP - Offensive Security Certified Professional : Next Up OSCP101 v2.0 (10) by HeadlessZeke
Wireless : From the Duh Dept: Study Shows Hotel Wireless Insecure (1) by KrisTeason
Other : Holiday Ideas (6) by NickFnord
Programming : find libraries include in c programming (2) by jimbob
Other : i need HELP! (1) by don
Network Pen Testing : Hack me? (5) by Kev
News Items and General Discussion About EH-Net : [Article]-MS Blue Hat Hackers Headline Chicago Security Con (0) by don
Hardware : Cisco Security (5) by scucci
Career Central : Help Getting Started (3) by dalepearson
Career Central : information security future (2) by dalepearson
Career Central : Computer Science degree vs. anything else? (3) by dalepearson
Network Pen Testing : What info can be obtained just from IP (6) by shakuni
News from the Outside World : Chertoff Pushes for Einstein 3.0 Cyber Counterattack System (0) by don
Murray : [Article]-Column 0: Human Exploitation 101 (2) by Kev
Forensics : career in computer forensics (7) by BillV
Tools : ServifyThis (8) by ChrisG
Tools : Cain & Abel v4.9.23 Released (0) by don
Wireless : IP address (4) by shednik
Malware : New DOS Attack Is a Killer.. (from Dark Reading) (6) by RoleReversal
Malware : Whitehat rootkits to prevent theft? (13) by Kev

ChicagoCon 2008f

ChicagoCon 2008f Support EH-Net by Buying all of your Amazon items using the search bar above. Try CBT Nuggets Free!

ChicagoCon 2008f

ChicagoCon 2008f

Support EH-Net by
Buying all of your
Amazon items using
the search bar above.

Try CBT Nuggets Free!