To sum it up a BotNet is basically a series of unsuspecting users surfing the internet, their machines get infected with a program that is hidden and lays dormant until the person that needs to use these machines for various reasons, for example to attack a server, harvest email addresses, steal somebody's identity along with many worse things. When the person running the BotNet needs to use these zombie computers they call them up via some sort of control channel and launch the attack from the many systems they have access to (this can be in the thousands). After the attack if information has been gathered from other systems the hacker decides he/she needs. The information is received from the zombie machines at their leisure while keeping their anonymity intact.
Makes you wonder if you have ever been blacklisted from accessing a site or from emailing and you have done nothing wrong.
I can't stand to see people being wrongly prosecuted because someone is using their machine without their knowledge.
This is another reason I perform forensic investigations. Imagine if someone was collecting and serving up Kiddie Porn from your machine without your knowledge. Every photo, every modification along with every transfer of those files is a separate felony. You go to jail, not the real culprit.
If you are ever in that situation, work with Law Enforcement to help figure out exactly what happened and also have a good lawyer that can enlist the help of a forensics specialist to nail down exactly what happened and you are in fact a victim.
Be aware, If you do collect these type of files and try to say you don't we can prove that as well and you need to go to jail and you will. In my opinion pedophiles are one of the worst types out there.
Thank You Georgia Tech, your development will help a the internet community and your hard work is greatly appreciated!
For full details on the Georgia Tech BotNet Sniffer: Go Here Read the pdf it is a very interesting and a somewhat technical read.
No comments:
Post a Comment