Welcome, Guest. Please login or register.
Forums
Pages: [1]

Author Topic: New Tool - BotHunter, (Thu, Aug 2nd)  (Read 558 times)

0 Members and 1 Guest are viewing this topic.

Deez

  • Administrator
  • Hero Member
  • *****
  • Posts: 10688
  • Karma: 1871
    • View Profile
    • Qwoter
New Tool - BotHunter, (Thu, Aug 2nd)
« on: August 03, 2007, 01:01:23 AM »
New Tool - BotHunter, (Thu, Aug 2nd)
   

Readers, SRI International and Georgia Tech have been working on a pretty cool new tool that will quickly locate bot traffic inside a network. A government/military version of this software has been in use successfully for about a month, and a public version was made available this week. BotHunter introduces a new kind of passive network perimeter monitoring scheme, designed to recognize the intrusion and coordination dialog that occurs during a successful malware infection. It employs a novel dialog-based correlation engine (patent pending), which recognizes the communication patterns of malware-infected computers within your network perimeter. BotHunter is available for download at http://www.cyber-ta.org/BotHunter/ and runs under Linux Fedora, SuSE, and Debian distributions.

http://isc.sans.org/diary.php?storyid=3221&rss
   
Report to moderator   Logged
Qwoter Stock College" style="border:0
Pages: [1]
Tags:
 

+ Quick Reply

With Quick-Reply you can write a post when viewing a topic without loading a new page. You can still use bulletin board code and smileys as you would in a normal post.

Warning: this topic has not been posted in for at least 350 days.
Unless you're sure you want to reply, please consider starting a new topic.

Name: Email:
Verification:
Type the letters shown in the picture
Listen to the letters / Request another image
Type the letters shown in the picture:
What is 1 + 8?: