Malicious Malware: attacking the attackers, part 2

Malicious Malware: attacking the attackers, part 2
Thorsten Holz, Frederic Raynal

This article explores measures to attack those malicious attackers who seek to harm our legitimate systems. The proactive use of exploits and bot networks that fight other bot networks, along with social engineering and attacker techniques are all discussed in an ethical manner. Part two of two.

Expand all | Post comment

Malicious Malware: attacking the attackers, part 2.1 2006-02-06
Alexey Vesnin

Nice! But I consider that there's another part of the task that is uncovered by this article - the ID data gathering. It's good to STOP 'em attacking you and it's right, but you need to know who they REALLY are. I used a PHoneWorm or something like that code - a simple binary that collects a dial-up data(ISP numbers, logins and passwords). Of course, they're often using a hi-jacked or PHished ID's, but this can help you to investigate who they were... And another USEFUL thing is USB... How many people who's got a cellphone have also a USB cable for it? Alot. And recording IMEI or HWID of the phone attached to attackers' machine is very useful. IMHO

[ reply ]

Link to this comment: http://www.securityfocus.com/comments/infocus/1857/85#85

Malicious Malware: attacking the attackers, part 2 2006-03-16
Sean

Malicious Malware: attacking the attackers, part 2 2007-10-21
Anonymous