.

Call to arms - Negritas' war against DDoS.

<<

Negrita

User avatar

Sr. Member
Sr. Member

Posts: 299

Joined: Sat Sep 10, 2005 5:45 pm

Location: /dev/null

Post Sat Mar 24, 2007 5:04 pm

Call to arms - Negritas' war against DDoS.

OK, so I'm declaring war on DDoS attacks. As some of you may know, I've already suffered a DDoS attack, and I can assure you it wasn't any fun.

I have an idea which for the mean time I'm keeping to myself that will hopefully help erradicate DDoS attacks, and make them a thing of the past. The reason I'm keeping it to myself is because there may be a patent in it for me, and it will give my work a decided edge over our competitors.

I have already amassed a huge amout of information, but I thought that I'd open this up to the EH-Net community to see what you could all come up with.
I'm looking for;
1. Any information that you have on DDoS attacks, including how they are planned, set up, executed, etc.
2. Copies of (prefferably source code) the client, master and daemon software of the following tools: Stacheldraht, Trin00, WinTrin00, TFN (Tribal Flood Network), TFN2K, Trinity, Shaft, Mstream, and any other DDoS attack tools you may know of, including any morphed versions.
3. Any information you may have on how DDoS attacks have been dealt with until now.

As I said, I've already got a lot of stuff, but I want to see what you can come up with. Furthermore, for those of you with malicious intent planning on sending me trojaned material, this research project will be undertaken in a totally stand alone secure network, so you can all save your efforts for another sucker.

Please send anything you have to; negrita1 <at> gmail <dot> com.
CEH, CCSA NG/AI, NNCSS, MCP, MCSA 2003

There are 10 kinds of people, those that understand binary, and those that don't.
<<

Negrita

User avatar

Sr. Member
Sr. Member

Posts: 299

Joined: Sat Sep 10, 2005 5:45 pm

Location: /dev/null

Post Wed Apr 11, 2007 5:15 pm

Re: Call to arms - Negritas' war against DDoS.

BUMP!

OK, so you all either like DDoS attacks and the thought that at anytime someone can do this to you, or you're all just too complacent to want to help out and take part in pioneering research.
CEH, CCSA NG/AI, NNCSS, MCP, MCSA 2003

There are 10 kinds of people, those that understand binary, and those that don't.
<<

don

User avatar

Administrator
Administrator

Posts: 4226

Joined: Sun Aug 28, 2005 10:47 pm

Location: Chicago

Post Wed Apr 11, 2007 8:25 pm

Re: Call to arms - Negritas' war against DDoS.

CISSP, MCSE, CSTA, Security+ SME
<<

slimjim100

User avatar

EH-Net Columnist
EH-Net Columnist

Posts: 385

Joined: Wed Nov 08, 2006 12:50 pm

Location: Atlanta

Post Thu Apr 12, 2007 7:46 am

Re: Call to arms - Negritas' war against DDoS.

Negrita I support your efforts but as for help...

1. Any information that you have on DDoS attacks, including how they are planned, set up, executed, etc.

[glow=red,2,300]I am not able to help with this due to NDA's with my employer :([/glow]

2. Copies of (prefferably source code) the client, master and daemon software of the following tools: Stacheldraht, Trin00, WinTrin00, TFN (Tribal Flood Network), TFN2K, Trinity, Shaft, Mstream, and any other DDoS attack tools you may know of, including any morphed versions.
[glow=red,2,300]
I do not have any copies or source code...[/glow]

3. Any information you may have on how DDoS attacks have been dealt with until now.

[glow=red,2,300]Again the NDA prevents me from discussing this info.[/glow]

If you would like to talk about prevention or how to limit damage during an attach I can chat with you via IM.


Brian
CISSP, CCSE, CCNA, CCAI, Network+, Security+, JNCIA, & MCP
<<

S20

Newbie
Newbie

Posts: 1

Joined: Tue Feb 27, 2007 10:36 am

Post Sat Aug 18, 2007 6:28 am

Re: Call to arms - Negritas' war against DDoS.

-------------------------------------------
The only secure system is:
A system with no network connection,
no users, cast in 30 feet of reinforced
concrete and a dead admin.
-------------------------------------------
<<

oneeyedcarmen

User avatar

Full Member
Full Member

Posts: 233

Joined: Thu Jul 05, 2007 2:13 pm

Location: Baltimore, MD USA

Post Sat Aug 18, 2007 7:19 am

Re: Call to arms - Negritas' war against DDoS.

Negrita,

Any updates on your research?  Can we expect to see your name on a patent anytime soon?

-Brian
Reluctant CISSP, Certified ASS
<<

Negrita

User avatar

Sr. Member
Sr. Member

Posts: 299

Joined: Sat Sep 10, 2005 5:45 pm

Location: /dev/null

Post Sat Aug 18, 2007 1:26 pm

Re: Call to arms - Negritas' war against DDoS.

Well the idea has been presented to the VP of Product Management and to the CTO. The idea will require third party involvement, and I know that they are in contact with some security partners such as Aladdin and Symantec.

It's now out of my hands. Management now have to decide if this is a feasable product to develop and if this is the direction they want to take the company.
CEH, CCSA NG/AI, NNCSS, MCP, MCSA 2003

There are 10 kinds of people, those that understand binary, and those that don't.
<<

Negrita

User avatar

Sr. Member
Sr. Member

Posts: 299

Joined: Sat Sep 10, 2005 5:45 pm

Location: /dev/null

Post Sat Aug 18, 2007 3:14 pm

Re: Call to arms - Negritas' war against DDoS.

Hi S20,

Sorry, I missed your post earlier. Thanks for those links. When I said earlier that I had amassed  some material, The first stuff I got my hands on was David Dittrichs' materials. The ussrback.com site looks very usefull though - thanks.
CEH, CCSA NG/AI, NNCSS, MCP, MCSA 2003

There are 10 kinds of people, those that understand binary, and those that don't.
<<

morpheus063

User avatar

Sr. Member
Sr. Member

Posts: 393

Joined: Sun Jun 25, 2006 10:08 am

Location: Cochin - India

Post Sat Aug 18, 2007 5:08 pm

Re: Call to arms - Negritas' war against DDoS.

Hi Negrita,

I missed your first post on this first thread. However, let me first extend full support to your wonderful initiative.

As part of content development for my book on IDS, I did some research on DDoS, out of which, I found the following outstanding:

A Taxonomy of DDoS Attack and DDoS Defense Mechanisms

Another Good Resource for DoS and DDos (including Code and Documentation)

As a support to your initiative, I will be mentioning/discussing this project in my web portals, blogs and training seminars.

Wishing you all the best for your research. Keep us posted about your success, the new developments and mile stones achieved.
Manu Zacharia
MVP (Enterprise Security), ISLA-2010 (ISC)², C|EH, C|HFI, CCNA, MCP,
Certified ISO 27001:2005 Lead Auditor

[b]There are 3 roads to spoil; women, gambling & hacking. The most pleasant with women, the quickest with gambling, but the surest is hacking - c0c0n

Return to Malware

Who is online

Users browsing this forum: No registered users and 0 guests

.
Powered by phpBB® Forum Software © phpBB Group.
Designed by ST Software