Slashdot Mirror

← Back to Stories (view on slashdot.org)

Observing Botnets with Honeynets

Posted by CmdrTaco on from the know-thine-enemy dept.

Susan Saradon writes "The Honeynet Project has released a new paper which deals with the observation of botnets. "Know Your Enemy: Tracking Botnets" discusses what Botnets are, who is using them, how, and why. It als introduces the tools "mwcollect" and "drone" which can be used for collecting an tracking Botnet activity. Nice to read and looking forward to the release of these tools."

1 of 118 comments (clear)

  1. Amazing Article by Foolomon · · Score: 0, Flamebait

    Wow! What an amazing read! I wonder what David Chess and similar virus gurus would have to say about this stuff.

    On a tangential topic: does XP (SP2) typically have 0.02% to 0.05% network utilization (as shown in Task Manager) ongoing constantly while the system is up? I've been noticing this lately and am trying to figure out why.

    Nothing unusual is showing up in the Processes tab (which doesn't say much in the event that a rootkit is being used) but I didn't nothing anything unusual as far as sockets that were open (using the netstat -a command).

    However, lately I've been experiencing some slowness while playing CoD:UO on a server that used to be blindingly fast for me.