The Carna Botnet Through the Lens of a Network Telescope
作者: Erwan Le Malécot , Daisuke Inoue
DOI: 10.1007/978-3-319-05302-8_26
关键词:
摘要: Earlier this year (2013), a massive dataset advertised as containing the result of year-long exhaustive scan entire IPv4 address space was anonymously released into wild under rather provocative "Internet Census 2012" designation. While subject matter that in itself controversial, it made even more so by fact its covert instigator also claimed to have temporarily assembled 420 thousand nodes strong botnet from presumably unsecured embedded devices perform (aka "Carna" botnet). In paper, we relate our attempt confirm validity intriguing story based on forensic analysis network traffic captured telescope for corresponding period time (i.e. April 2012 December 2012), share some observations doing and further discuss potential repercussions creation disclosure such dataset.
springer.com
sci-hub.st 参考文章(17)
Yoichi Shinoda, Ko Ikai, Motomu Itoh, Vulnerabilities of passive internet threat monitors usenix security symposium. pp. 14- 14 ,(2005)
David Moore, Colleen Shannon, Geoffrey M Voelker, Stefan Savage, Network Telescopes: Technical Report ,(2004)
Tavaris J. Thomas, Lloyd G. Greenwald, Toward undetected operating system fingerprinting WOOT '07 Proceedings of the first USENIX workshop on Offensive Technologies. pp. 6- ,(2007)
Aaron J. Burstein, Conducting cybersecurity research legally and ethically LEET'08 Proceedings of the 1st Usenix Workshop on Large-Scale Exploits and Emergent Threats. pp. 8- ,(2008)
Farnam Jahanian, Danny McPherson, Evan Cooke, The Zombie roundup: understanding, detecting, and disrupting botnets conference on steps to reducing unwanted traffic on internet. pp. 6- 6 ,(2005)
Niels Provos, A virtual honeypot framework usenix security symposium. pp. 1- 1 ,(2004)
Michael Bailey, Evan Cooke, Farnam Jahanian, Jose Nazario, David Watson, None, The Internet Motion Sensor - A Distributed Blackhole Monitoring System. network and distributed system security symposium. ,(2005)
Gordon Fyodor Lyon, Nmap Network Scanning: The Official Nmap Project Guide to Network Discovery and Security Scanning ,(2009)
Michael Bailey, David Dittrich, Erin Kenneally, Doug Maughan, None, The Menlo Report ieee symposium on security and privacy. ,vol. 10, pp. 71- 75 ,(2012) , 10.1109/MSP.2012.52
Eric Wustrow, Manish Karir, Michael Bailey, Farnam Jahanian, Geoff Huston, None, Internet background radiation revisited internet measurement conference. pp. 62- 74 ,(2010) , 10.1145/1879141.1879149