Archive for 'Remediation'
Rumors and Preparedness
There are rumors circulating around SANS and full-disclosure circles that there is a 0day SSH exploit in the wild that might be announced sometime around the upcoming Black Hat event. Whether or not it is true is to be seen, but beyond the question of “is it or isn’t it,” it’s interesting to consider the [...]
Posted: July 9th, 2009 under 0day, IDS/IDP, Remediation.
Comments: none
If I knew then what I know now
The eternal recursive human lament. If you’re a post-adolescent with a functional left-brain, the thought has surely occupied your mind. And it goes through stages, progressing from incompetent ignorance (”I know it all, so don’t you try to teach me anything”), to personal agnosticism (”I know enough to know that there’s a lot I don’t [...]
Posted: August 11th, 2008 under Accountability, Audit, Remediation.
Comments: 2
Zombie Master Masquerade
The Metaeye Security group (bonus points for not capitalizing the “e” in “eye”) have released ZmbScap (Zombie Scapper), a Perl script designed to detect and disable various zombie DDoS tools (including Stacheldraht, Wintrinoo, Mstream, Tribal Flood Network, Trinoo, Shaft, Trinitinty, and Entitee). It achieves this by attempting to issue a kill command to the infected [...]
Posted: February 22nd, 2007 under Botnets, Remediation.
Comments: none