Nmap Security Scanner
*Intro
*Ref Guide
*Install Guide
*Download
*Changelog
*Book
*Docs
Security Lists
*Nmap Hackers
*Nmap Dev
*Bugtraq
*Full Disclosure
*Pen Test
*Basics
*More
Security Tools
*Pass crackers
*Sniffers
*Vuln Scanners
*Web scanners
*Wireless
*Exploitation
*Packet crafters
*More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

isn logo Information Security News mailing list archives

U.S. Army Goes Bot Hunting
From: InfoSec News <alerts () infosecnews org>
Date: Thu, 27 Nov 2008 01:45:43 -0600 (CST)
http://www.informationweek.com/news/security/government/showArticle.jhtml?articleID=212200774

By Thomas Claburn
InformationWeek
November 26, 2008 

Most people whose computers have been turned into bots and linked to a 
botnet have no idea that their machines have been commandeered by 
cybercriminals. Their PCs send spam, steal information, and participate 
in denial-of-service attacks without any obvious sign.

But new software, funded by a grant from the U.S. Army Research Office 
and developed by SRI International, promises to provide users with more 
insight into what their computers are doing.

BotHunter, announced on Monday, is a free malware-detection application 
for Mac OS X, Linux/Unix, and Windows that monitors network activity. 
Unlike intrusion detection system (IDS) tools that scan only incoming 
data, BotHunter looks for patterns that indicate malware activity in 
both incoming and outgoing data.

"We do a lot of inbound egress monitoring," said Phillip Porras, SRI 
program director of enterprise and infrastructure security and lead 
developer of the BotHunter project. "BotHunter really flips that 
paradigm around."

[...]


_______________________________________________      
Help InfoSecNews.org with a donation!
http://www.infosecnews.org/donate.html

  By Date           By Thread  

Current thread:
  • U.S. Army Goes Bot Hunting InfoSec News (Nov 26)
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]