Advertisement
Help Keep Boards Alive. Support us by going ad free today. See here: https://subscriptions.boards.ie/.
If we do not hit our goal we will be forced to close the site.

Current status: https://keepboardsalive.com/

Annual subs are best for most impact. If you are still undecided on going Ad Free - you can also donate using the Paypal Donate option. All contribution helps. Thank you.
https://www.boards.ie/group/1878-subscribers-forum

Private Group for paid up members of Boards.ie. Join the club.

Microsoft Botnet Hunter

  • 01-05-2008 04:25PM
    #1
    the_syco
    Registered Users, Registered Users 2 Posts: 37,308 ✭✭✭✭


    http://www.computerworld.com/action/article.do?command=viewArticleBasic&articleId=9080958&source=rss_topic85
    The software vendor is giving law enforcers access to a special tool that keeps tabs on botnets, using data compiled from the 450 million computer users who have installed the Malicious Software Removal Tool that ships with Windows.

    ...

    Sûreté du Québec officers had heard about Microsoft's tool in at a 2006 Microsoft law enforcement conference. A few months later, they decided to give it a try.
    Analysis by Microsoft's software allowed investigators to identify which IP address was being used to operate the botnet, Gaudreau said. And that cracked the case.

    ...

    "If we hadn't had that tool, it would have maybe taken two years more to do the investigation," he said.

    Not sure who'd they'd give access to for such a tool, but it may be handy in time to come.


Comments

  • #2
    _CreeD_
    Registered Users, Registered Users 2 Posts: 4,205 ✭✭✭_CreeD_


    SRI are also very good bot tracking resource http://mtc.sri.com/, they have an internal IDS package tuned for BotNets called "Bot Hunter" (Link on that page).


Advertisement