Using Nepenthes Honeypots to Detect Common Malware

by Jamie Riden
Sept. 15, 2017 1 comment Symantec Pen Testing & Audits

In the past few years, a number of serious flaws in Windows have been exposed, including MS03-026 [ref 1], the flaw that Blaster [ref 2] used to spread in 2003, right up to the recent Mocbot/Wargbot worm [ref 3] which exploited MS06-040 [ref 4] from August 2006. The number of distinct pieces of malware exploiting these flaws has rapidly increased over the same time period. There are several variants of most worms and many more than that of most of the bot families, such as Agobot, Phatbot, Sdbot, and so on. As is now well-known, bots are collections of compromised "zombie" computers used together in a botnet network for nefarious purposes

Steven Ulm 8 months ago

This is useful info but why it had to be written so "unclean"? A final revision could make it muuuch better!