Nmap Security Scanner
*Intro
*Ref Guide
*Install Guide
*Download
*Changelog
*Book
*Docs
Security Lists
*Nmap Hackers
*Nmap Dev
*Bugtraq
*Full Disclosure
*Pen Test
*Basics
*More
Security Tools
*Pass crackers
*Sniffers
*Vuln Scanners
*Web scanners
*Wireless
*Exploitation
*Packet crafters
*More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:
edgeos



Vulnerability Development: Re: BackOrifice == DDoS Server???

Re: BackOrifice == DDoS Server???

From: Brooke, O'Neil <o'neil.brooke_at_LMCO.COM>
Date: Wed, 5 Jul 2000 10:29:07 -0400

>-----Original Message-----
>From: Maxime Rousseau [SMTP:mrousseau_at_LABCAL.COM]
>Sent: Thursday, June 29, 2000 10:30 AM
>To: VULN-DEV_at_SECURITYFOCUS.COM
>Subject: Re: BackOrifice == DDoS Server???
>
><snip>
>I would also like to point out that, even if this tool can be used at a
>DDoS tool, so can SMS or PC-Anywhere. The fact that all of those were
>not primarly intended to be DDoS tools makes it inconvenient to use them
>in such fashion. Its like trying to nail something with a screwdriver.
>If you have a BO2K owned machine your smart move would be to deploy a
>specific DDoS tool on it via the BO2K (kickass) options. It wouldnt be
>very easy to synch a large scale DDoS via a net of BO2K machines.
>
>Its all about using the right tool :)
>
>M.
>
>Maxime just hit the nail on the head with that comment. The danger of bo2k
>and other trojans is not in their ability to launch a DDOS attack. The danger
>lies in how easy it is to setup a large network of trojan infected hosts. The
>trojan can then be used to evaluate infected machines and their local network
>segments for suitability as a DDOS attack platform.
>
>I wonder if the antivirus companies would be able to track the various trojan
>strains. It would be interesting to see how many computers are infected and
>can be access by the same password.
Received on Jul 05 2000

[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]
edgeos