bittorrent == botnet
- From: "Jason L. Ellison" <infotek@xxxxxxxxxxxx>
- Date: Tue, 3 Oct 2006 16:25:50 -0500 (CDT)
A friend and I were discusing the possible uses of the bittorrent
network in DDOS's. It could be a very massive botnet if you advertised
popular files with the targets ip address and target service. In the most
recent version of azerus I noticed that the default settings ignore
clients that advertise on ports "0;25;135;139".
For instance if I falsely advertise: HTTP, RDP, SIP, VNC ports and the
victims ip address and loaded my client with very popular hashes... I
would think this would overburden most small medium businesses without
having to own or buy a botnet.
comments?
-Jason Ellison
------------------------------------------------------------------------
This List Sponsored by: Cenzic
Need to secure your web apps?
Cenzic Hailstorm finds vulnerabilities fast.
Click the link to buy it, try it or download Hailstorm for FREE.
http://www.cenzic.com/products_services/download_hailstorm.php?camp=701600000008bOW
------------------------------------------------------------------------
- Follow-Ups:
- Re: bittorrent == botnet
- From: Nicolas RUFF
- RE: bittorrent == botnet
- From: Jason M Frey
- Re: bittorrent == botnet
- Prev by Date: Re: pentest documentation
- Next by Date: Frontpage no password privileges escalation?
- Previous by thread: PacSec 2006 announcement, EUSecWest 2007 Call For Papers (Mar 1-2, deadline Oct 20th)
- Next by thread: RE: bittorrent == botnet
- Index(es):
