what are the botnets ?
A botnet is a collection of Internet-connected programs communicating with other similar programs in order to perform tasks. This can be as mundane as keeping control of an Internet Relay Chat (IRC) channel, or it could be used to send spam email or participate in distributed denial-of-service attacks. The word botnet is a portmanteau of robot and network. (Wikipedia)
Okay I won t make it long with the useless definitions etc.The most important thing is knowing the code and having a brain , the rest will come alone along the way
Few Methods used to spread botnets:
* Javascript botnets:
http://media.blackhat.com/bh-us-12/Brie ... uys_WP.pdf" onclick="window.open(this.href);return false;
PS: in the next article I am going to write an article about how it is done from A to Z
* Cpanels:
Hackers love cms like wordpress and joomla because they are the easiest and always have vulnerabilities, plus most shared webhosting servers contain at least a website using one of these cms
how it is done?
well after uploading a shell on a server , a hacker can work his way to crack cpanels on that server and upload his own botnets like Zeus botnet, athena etc and source codes are public and anyone can find them by using google.So next after the upload every visitor of the websites hosted on the server will be infected well maybe not all because most of the botnets are made to target windows systems but a smart hacker will make sure he uses a botnet that target all kind of OSs ( shit he never miss anything :p )
* Pr0n websites:
well this idea is by me ,am not sure if its used in the wild or not but I think it is good idea even tho I didn t try it
why pr0n websites? well we all know these websites have alot of traffic and are visited by thousands everyday so having a botnet on one of its Cpanels will increase the number of zombies that later can be used in many different goals
PS: Botnets can t be used only in dd0s and who thinks that way, he better stay away of hacking because he lacks out of the box thinking
*Pastebins:
A hacker can download a clean version of a cracked software or pr0n videos and upload them in many upload websites but in this case he can include a trojan with these files, so when someone look for them using google, he will for sure find one of the links that the hacker made and to increase the rate of success , pastebin and such websites are a good way because many people look in pastebin archives to find links to cracked softwares etc
*Youtube :
well here we come to how script kiddies can become zombies or how stupidity of some people may lead to making their computers slaves
lets imagine someone wants to hack a facebook account but he has no idea how it is done.His first move will be typing " hack facebook ".and here comes the hacker tricks.
A hacker may make a graphical "GUI" using macromedia but he binds it with a trojan and call it "Facebook hacker tool" -_-
then he can make a video tutorial where he prepare a fake facebook account that he knows already its password and on his video tutorial he will look like if his "magical software" worked and he can attach the link of his trojan to the video which will increase the fact that more people will be surprised and will directly go looking after the link
Use of botnets:
* Yeah we all know it can be used for ddos :p
* A candom ? yes it can be like a candom , they can be used as a protection against being a suspect of for example port scanning which is illegal in many countries .also they can be used to find other servers with weak passwords on ssh or FTP if not left witout passwords, and the hacker will next move to put more botnets on the newly discovered servers.Its just like who can make a bigger and better empire :p
*Identity theft: well every keystroke and data of a zombie computer can be recorded by botnets
*Fraud
*zombies spreading zombies: well if the zombie can spread through usb for sure an owner of a zombie computer will use a usb disk to to transfer data or work papers to another computer so in same time he doesn t know that he didn t just infect his home computer but he is going to infect his buisness computer and if the hacker is lucky all buisness computers will become zombies too with time
*Automatition: well botnets can be also used to to automate reconnaisance tasks on different targeted things by the hacker which means not only the hacker can hide behind them but they can do the work for him in a less time
Botnets
Re: Botnets
An acceptable start with the Wikipedia quote, but I don't quite understand what you mean by "knowing the code and having a brain".what are the botnets ?
A botnet is a collection of Internet-connected programs communicating with other similar programs in order to perform tasks. This can be as mundane as keeping control of an Internet Relay Chat (IRC) channel, or it could be used to send spam email or participate in distributed denial-of-service attacks. The word botnet is a portmanteau of robot and network. (Wikipedia)
Okay I won t make it long with the useless definitions etc.The most important thing is knowing the code and having a brain , the rest will come alone along the way
Who's your target audience here, and how much is the reader suppose to know from the start?
It would be better if you didn't link to other articles in the middle of yours, and instead you can quote somethingFew Methods used to spread botnets:
* Javascript botnets:
http://media.blackhat.com/bh-us-12/Brie ... uys_WP.pdf" onclick="window.open(this.href);return false;" onclick="window.open(this.href);return false;
PS: in the next article I am going to write an article about how it is done from A to Z
from the other article if you wish, and use the link under "references" at the end of your article.
This way you can be sure that your material is safe, even if the link goes dead later.
It's true that a hacker love a vulnerable CMS, and most of what you say about the methods are true.* Cpanels:
Hackers love cms like wordpress and joomla because they are the easiest and always have vulnerabilities, plus most shared webhosting servers contain at least a website using one of these cms
how it is done?
well after uploading a shell on a server , a hacker can work his way to crack cpanels on that server and upload his own botnets like Zeus botnet, athena etc and source codes are public and anyone can find them by using google.
But saying that they (CMS) are the easiest way and always contain vulnerabilities is not correct, as you can never know this for sure.
You can usually assume that a system is never totally secure, but at the same time you can't expect to always be able to get in.
A fully patched Wordpress site with zero modules is a good example.
Wordpress is usually seen as pretty insecure, but as of this date there are no know vulnerabilities to the current Wordpress core.
Also, you writing this as if cpanels are a common sight enough for an intruder to assume that they are almost always present and can be cracked.
A system is more than just a web application, and a vulnerable cms is far from all that is needed to break in.
I think you should explain a bit more to the reader about "how" they are infected more exactly.So next after the upload every visitor of the websites hosted on the server will be infected well maybe not all because most of the botnets are made to target windows systems but a smart hacker will make sure he uses a botnet that target all kind of OSs ( shit he never miss anything :p )
You make it sound like magic, and that all users who visits the site are in danger.
Don't scare the reader too much with too little or false information
Yup, Porno sites have been known to spread malware since the birth of boobs online ; )* Pr0n websites:
well this idea is by me ,am not sure if its used in the wild or not but I think it is good idea even tho I didn t try it
why pr0n websites? well we all know these websites have alot of traffic and are visited by thousands everyday so having a botnet on one of its Cpanels will increase the number of zombies that later can be used in many different goals
PS: Botnets can t be used only in dd0s and who thinks that way, he better stay away of hacking because he lacks out of the box thinking
This is a bit unclear, since you name it Youtube but then never mention it (I guess it's the video tutorial?).*Youtube :
well here we come to how script kiddies can become zombies or how stupidity of some people may lead to making their computers slaves
lets imagine someone wants to hack a facebook account but he has no idea how it is done.His first move will be typing " hack facebook ".and here comes the hacker tricks.
A hacker may make a graphical "GUI" using macromedia but he binds it with a trojan and call it "Facebook hacker tool" -_-
then he can make a video tutorial where he prepare a fake facebook account that he knows already its password and on his video tutorial he will look like if his "magical software" worked and he can attach the link of his trojan to the video which will increase the fact that more people will be surprised and will directly go looking after the link
But still, what you say is true, although I think you should write it in more general terms before you give your example.
Again, do we all know this?Use of botnets:
* Yeah we all know it can be used for ddos :p
Who is your target audience?
Do you expect the reader to really know all this?
Summary: It's a good start, but I think you need to work a bit more on it
You seem to have read a lot and learned a lot already, but you also seem to have a few holes to fill, but who doesn't?
Just continue to read, learn and experiment, and if possible work a bit more on this article.
Cheers for now!
"The best place to hide a tree, is in a forest"
Re: Botnets
yes I will cats thanks for the advice man and am happy that you took time to read it and give your opinion about every point and that's what I hope to get when I write or post something and yes I will edit it asap to make it more clear because last days I am a bit busy with university studies
and am happy that you took time to read it and give your opinion about every point and that's what I hope to get when I write or post something and yes I will edit it asap to make it more clear because last days I am a bit busy with university studies Re: Botnets
Don't feel stressed, and only do it if you feel like itscatter wrote:yes I will cats thanks for the advice man
We are all here to learn and have fun, and private matters such as studies always comes first
"The best place to hide a tree, is in a forest"