NEOHAPSIS - Peace of Mind Through Integrity and Insight

Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com

Neohapsis > Archives > Pen-test> 2009-03

Re: Botnets

From: the.soylent (the.soylentgmail.com)
Date: Fri Mar 27 2009 - 12:35:34 CDT

Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

hi,
<http://packetstormsecurity.nl/irc/kaiten.c> may be worth a look.. its
old, but nice.
More interesting part is, how to execute the binary on target system
(with or without user- interaction via browser, through unpatched
services on the pc, ...)
have a look at metasploit if you wanna make a "cewl" presentation.

/soylent

M.D.Mufambisi schrieb:
> Hi Guys.
>
> Can someone please explain to me how botnets use IRC? I want to make a
> presentation to my group demonstrating this in my lab which comprises
> of 4 winxp boxes. Unpatched. How are commands issued via IRC?
>
> Kind regards,
>
> Munyaradzi
>
> ------------------------------------------------------------------------
> This list is sponsored by: InfoSec Institute
>
> Tired of using other people's tools? Why not learn how to write your own exploits? InfoSec Institute's Advanced Ethical Hacking class teaches you how to write stack and heap buffer overflow exploits for Windows and Linux. Gain your Certified Expert Penetration Tester (CEPT) cert as well.
>
> http://www.infosecinstitute.com/courses/advanced_ethical_hacking_training.html
> ------------------------------------------------------------------------
>
>
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.6 (GNU/Linux)

iD8DBQFJzQ5mY86qEhC92cgRAvMNAKDU9Ps2U1RCT6VcbluVAzeT739HhACeJrDm
RrcjtkC2DAYIcnMciVV+3N0=
=7N7X
-----END PGP SIGNATURE-----

------------------------------------------------------------------------
This list is sponsored by: InfoSec Institute

No time or budget for traveling to a training course in this fiscal year? Check out the online penetration testing courses available at InfoSec Institute. More than a boring "talking head", train in our virtual labs for a total hands-on training experience. Get the certs you need as well: CEH, CPT, CEPT, ECSA, LPT.

http://www.infosecinstitute.com/request_online_training.html
------------------------------------------------------------------------

Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]