2014.10.25
The Attack and Defense of Computers 141022
Dr. Fu-Hau Hsu (許富皓)
Taxonomy of Bonets

# Defnition
botnet (zombie army or drone army)
分類
Attacking behavior
C&C models
Rally mechanisms
Communication protocols
Observable botnet activities
Evasion Techniques
 
border:solid windowtext 1.0pt;padding:
0cm">P.11 Attacking behavior
E.g.
(1)Distributed Denial-of-Service Attacks分散式阻斷攻擊
Range:1PC~All Internet =>增加load癱瘓目標 => 封包進不去(吃頻寬)、機器不能work
*proxy 連到遠端server
SOCKS v4/v5 proxy
(2) spamming(垃圾郵件)=>比例下降
(3) sniffing Traffic
 
# Grum Botnet(進年比例下降)
border:solid windowtext 1.0pt;padding:
0cm">p.22
-Fridge Caught Sending Spam Emails in Botnet Attack
e.g. Routers、multimedia centres、televisions、refrigerator…
border:solid windowtext 1.0pt;padding:
0cm">p.25
-Sniffing Traffic
-Keylogging
-Addons(參照投影片Google部分)
*每個page都有一個是別號,ACCK只要收到一click及判斷其識別號為何。
-IRC(Internet Realate Chat)=>雖然老舊但仍舊popular
        Server/Client
        使用者通訊分為pubilc和private(可能在不同Channel)
         
comment 0 trackback 0
引用 URL
http://icebreak310.blog.fc2blog.us/tb.php/200-bfb30d2e
引用:
留言:
只对管理员显示