onHacks

Details at Jose Nazario of Arbor Networks : http://asert.arbornetworks.com/2009/11/malicious-google-appengine-used-as-a-cnc/ .

Log0 is quite busy lately.

Botnet

BotHerder 0.1 is now available for download here, or at the source page. Help file included at README in the zip.

This tool was not to be released when I first built it, however it becomes more useful. It has a lot of functions to include in the future such as adopting general botnet communication, and making it easier to use and automate, and even scriptable.

Botnet Source

The deck of “A DIY Botnet Tracking System” is here :

I will post the source code to the tool after updated with HELP document. Feel free to email me =)

BTW, hac.ka is my friend and the otherOnHacks teammate whom I mentioned during my final speech. He works on Email and DNS related items.

Botnet Presentation

Microsoft Security Intelligence Report 7th is out! Interested individuals should check it out. =)

Botnet, Malware Report, SIR

Sharing several news article on botnets :

ClickForensics : Botnets Accounted for 42.6 Percent of All Click Fraud in Q3 2009.

Symantec : Botnets Generate 87.9% of Total Spam Messages

DarkReading : Botnet Unleashes Variety Of New Phishing Attacks <– this one particularly impersonated as Microsoft support to fool users to download “cleanup tool”.

Botnet News

I’ve read this earlier but only posted it now… oops… I felt it is worth to share.

Innovative? Take a look :

http://asert.arbornetworks.com/2009/08/twitter-based-botnet-command-channel/

Now makes us think of the other forum boards such as Baidu Tieba, Google’s, 2ch? =)

Botnet Twitter