| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Fri, 15 May 2009 17:01:10 -0300 From: "M.B.Jr." <marcio.barbado@...il.com> To: Mark Sec <mark.sec@...il.com> Cc: Valdis.Kletnieks@...edu, Untitled <full-disclosure@...ts.grok.org.uk> Subject: Re: Howto Simulate a BotNet ? This url goes for the spectacular ns-2: http://sourceforge.net/projects/nsnam and below, you will find the stable version of ns-3 (which is supposed to replace ns-2); I've never used ns-3 so I cannot rate it for you but it's here: http://www.nsnam.org/releases/ns-allinone-3.4.tar.bz2 Regards, On Fri, May 15, 2009 at 3:10 PM, Mark Sec <mark.sec@...il.com> wrote: > Thanks for u response, mmmm any1 have the official link to down ns2 (win32/ > Linux) > > -mark > > > > 2009/5/8 Shyaam <shyaam@...il.com> >> >> That is a nice tool as such. Many of my friends have tested it, and it >> is really cool. >> >> Shyaam >> >> On Fri, May 8, 2009 at 10:00 PM, Tomas L. Byrnes <tomb@...neit.net> wrote: >> > Excuse the toppost: >> > >> > You might want to look into the work done @ SRI on the BotHunter project >> > by Phil Porras, and Farnham Jahanian and others' work @ University of >> > Michigan, which led to the creation of Arbor Networks. >> > >> > >> > >> >>-----Original Message----- >> >>From: full-disclosure-bounces@...ts.grok.org.uk [mailto:full-disclosure- >> >>bounces@...ts.grok.org.uk] On Behalf Of Jan G.B. >> >>Sent: Thursday, May 07, 2009 7:28 AM >> >>To: Mark Sec >> >>Cc: Valdis.Kletnieks@...edu; Untitled >> >>Subject: Re: [Full-disclosure] Howto Simulate a BotNet ? >> >> >> >>2009/5/7 Mark Sec <mark.sec@...il.com>: >> >>> Well, Im looking info: >> >>> >> >>> 1) See all the traffic (Over botnet) >> >>> 2) Administering many slaves (Lab) with the master (lab) via IRC, web, >> >>> etc... >> >>> 3) Probe attacks DDoS and DoS (Lab) >> >>> 4) Probe remote and Local Exploits >> >>> 5) Infected via remote <iframe>, exploit, XSS etc. >> >>> >> >>> any1 ? >> >>> >> >>> -Mark :-) >> >>> >> >>> >> >> >> >> >> >>Sounds to me, like you're about to test your botnet client in a >> >>virtual environment. >> >> >> >> >> >>> >> >>> >> >>> 2009/5/6 Aadil Noorkhan <a.noorkhan@...kbynet.com> >> >>>> >> >>>> Hello, >> >>>> >> >>>> The closest I could find are: >> >>>> - http://pages.cs.wisc.edu/%7Epb/botnets_final.pdf (rather >> >>interesting >> >>>> paper about an inside look at botnets) >> >>>> - http://www.breakingpointsystems.com/community/blog/botnet- >> >>simulation >> >>>> (video about a botnet simulation by BreakingPointSystems) >> >>>> >> >>>> Cheers, >> >>>> Aadil. >> >>>> >> >>>> On Thu, 2009-05-07 at 05:36 +0400, Valdis.Kletnieks@...edu wrote: >> >>>> > On Wed, 06 May 2009 18:07:48 CDT, Mark Sec said: >> >>>> > >> >>>> > > Does any1 know a tool. squema, info or ideas to simulate a >> >>Botnet? >> >>>> > > >> >>>> > > Ideas: >> >>>> > > >> >>>> > > A) Many Vmware (workstations) over win32 >> >>>> > > B) Make a fake traffic >> >>>> > > C) Make a scripts to simulate many hosts >> >>>> > > D) IDS/ IPS (to see the traffic) >> >>>> > >> >>>> > What behavior(s) of a botnet are you trying to simulate? There's a >> >>lot >> >>>> > of approaches, as you've already noticed - which one will work best >> >>will >> >>>> > depend a lot on what you're trying to do. >> >>>> -- >> >>>> Aadil NOORKHAN >> >>>> Administrateur Unix >> >>>> ------------------------------------------------------ >> >>>> LINKBYNET Indian Ocean >> >>>> BG Court, Route Saint-Jean, Quatre Bornes, Ile Maurice >> >>>> Tel direct : (+33) 01 48 13 21 78 >> >>>> Tel : (+33) 1 48 13 00 00 >> >>>> Fax : (+33) 1 48 13 31 21 >> >>>> Email : a.noorkhan@...kbynet.com >> >>>> Web : www.linkbynet.com >> >>>> ______________________________________________________ >> >>>> Astreinte : http://www.linkbynet.com/astreinte/ >> >>>> >> >>> >> >>> >> >>> _______________________________________________ >> >>> Full-Disclosure - We believe in it. >> >>> Charter: http://lists.grok.org.uk/full-disclosure-charter.html >> >>> Hosted and sponsored by Secunia - http://secunia.com/ >> >>> >> >> >> >>_______________________________________________ >> >>Full-Disclosure - We believe in it. >> >>Charter: http://lists.grok.org.uk/full-disclosure-charter.html >> >>Hosted and sponsored by Secunia - http://secunia.com/ >> > >> > _______________________________________________ >> > Full-Disclosure - We believe in it. >> > Charter: http://lists.grok.org.uk/full-disclosure-charter.html >> > Hosted and sponsored by Secunia - http://secunia.com/ >> > >> >> >> >> -- >> Thank you in advance for your time and consideration. >> Kind Regards, >> Shyaam Sundhar R.S. >> >> Site: www.EvilFingers.com >> >> Certification History: >> >> Audit: GPCI >> Legal: GCDS >> Management: GLDR >> Security: SSP-CNSA, SSP-MPA, SSP-GHD, GREM, GHTQ, GWAS, GIPS, GCFA, GCIA, >> GCIH >> Anti-Terrorism: CAS > > > _______________________________________________ > Full-Disclosure - We believe in it. > Charter: http://lists.grok.org.uk/full-disclosure-charter.html > Hosted and sponsored by Secunia - http://secunia.com/ > -- Marcio Barbado, Jr. _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Powered by blists - more mailing lists