- It's the applications, stupid
- Will a whitelist save personal computing?
- Thousands of Web sites under attack
- To solve the unsolvable problem
- Re-thinking the security of virtual machines
- Security Development Lifecycle trumps code complexity
- Is your Web site FIPS compliant?
- Computer security: Why have least privilege?
- Strategic security: Get a handle on authentication
- Control user installs of software
February 21, 2007 | Comments: (0)
Get up to speed on Botnets and DDoS attacks
A list of Botnet and DDoS reading material.
List of DDoS Articles and Tools
http://staff.washington.edu/dittrich/misc/ddos
Spam Zombies and Inbound Flows to Compromised Customer Systems http://www.uoregon.edu/~joe/zombies.pdfMAAWG San Diego, March 1st, 2005
Know Your Enemy: Tracking Botnets
http://www.honeynet.org/papers/bots
Route Injection and Spam
http://www.uoregon.edu/~joe/maawg8/maawg8.ppt (or .pdf) MAAWG Toronto, 23 October 2006
A Taxonomy of DDoS Attack and DDoS Defense Mechanisms
http://www.cis.udel.edu/~sunshine/publications/ccr.pdf
RFC on Egress Filtering
http://www.faqs.org/ftp/bcp/bcp38.txt
Infected PCs Acting as Spam Zombies: We Need to Cure the Disease, Not Just Suppress the Symptoms London Action Plan-CNSA Workshop, Belgium, December 13, 2006 http://www.uoregon.edu/~joe/lapcnsa2/london-action-plan.ppt (or .pdf)
Port 53 Wars: Security of the Domain Name System and Thinking About DNSSEC http://www.uoregon.edu/~joe/port53wars/port53wars.ppt (or .pdf) Internet2/ESNet Joint Techs, Minneapolis, February 14, 2007
Cert's Botnets as a Vehicle for Online Crime
http://www.cert.org/archive/pdf/Botnets.pdf
Bots and Botnets: Risks, Issues and Prevention.
Martin Overton, IBM Global Services, UK
http://arachnid.homeip.net/papers/VB2005-Bots_and_Botnets-1.0.2.pdf
Explaining Distributed Denial of Service Attacks to Campus Leaders
http://www.uoregon.edu/~joe/ddos-exec/ddos-exec.ppt
Book: Botnets: The Killer Applications
http://www.amazon.com/Botnets-Killer-Applications-Craig-Schiller/dp/1597491357/sr=8-1/qid=1172068761
Coming Book:Botnet Detection: Countering the Largest Security Threat (Advances in Information Security)
http://www.amazon.com/Botnet-Detection-Countering-Security-Information/dp/0387687661/sr=8-2/qid=1172068761
Cisco DoS Mitigation using Clean Pipes
http://www.cisco.com/en/US/netsol/ns341/ns121/ns310/net_value_proposition0900aecd80511f1e.html
Cisco Basic DoS Mitigation Techniques
http://www.cisco.com/en/US/products/products_security_response09186a00807bd13d.html
Posted by Roger Grimes on February 21, 2007 05:34 AM
RATE THIS ARTICLE:
-
- COMMENTS
TOP STORIES
HP buys EDS for $13.9 billionCorporate software spending slows
MS targets smartphone market
SOA Software buys LogicLibrary
Phishers scamming IRS rebates
Sun to clarify JavaFX plan
MS' dev tool service packs
Developers' role shifting
MS: SP3 reboots OEMs' fault
Apple: iPhone out of stock
ADDITIONAL RESOURCES
- Application Security: Threats and How to Counter Them
- Why Linux Threats Mean Business
- Minding the Machines: PC Disaster Recovery for the Enterprise
- Protect Your Data with SSL
- Prevent Your Next Microsoft Exchange Outage
- 11 Myths About Microsoft Exchange Backup & Recovery
