Nmap Security Scanner
*Intro
*Ref Guide
*Install Guide
*Download
*Changelog
*Book
*Docs
Security Lists
*Nmap Hackers
*Nmap Dev
*Bugtraq
*Full Disclosure
*Pen Test
*Basics
*More
Security Tools
*Pass crackers
*Sniffers
*Vuln Scanners
*Web scanners
*Wireless
*Exploitation
*Packet crafters
*More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:
edgeos

Security Incidents: RE: Distributed Bruteforce against SSH

RE: Distributed Bruteforce against SSH

From: Keith T. Morgan <keith.morgan_at_terradon.com>
Date: Mon, 12 May 2008 14:01:52 -0400

I wanted to follow up on this after putting a little more thought into it. Honestly, I'm quite impressed by the intelligence the botnet is exhibiting. Based on the testing I've done, it's clear that the entire botnet is collectively sharing its position in the dictionary on a per-target basis. Fairly slick, IMO.

> -----Original Message-----
> From: Gary Baribault [mailto:gary_at_baribault.net]
> Sent: Monday, May 12, 2008 11:28 AM
> To: incidents_at_securityfocus.com
> Subject: Distributed Bruteforce against SSH
>
>
> I guess what I reported last week was the warmup round ..
> Where now getting thousands of attemped logins with the
> standars dictionary of potential login names.
>
Received on May 12 2008

[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]