Jeff Edwards's Posts

MP-DDoser: A rapidly improving DDoS threat

June 7, 2012 by Jeff Edwards

This blog post is the fifth installment in our ongoing series of articles surveying the crypto systems used by different DDoS-capable malware families. Today’s topic is MP-DDoser, also known as “IP-Killer” As far as we are aware, MP-DDoser was first documented in February 2012 by Arbor analyst Curt Wilson in his pioneering survey of modern [...]

Share

Posted in Arbor Networks - DDoS Experts, ATLAS, Attacks and DDoS Attacks, Botnets, Encryption, Malware, Reverse Engineering
Read More

It’s not the end of the world: DarkComet misses by a mile

March 16, 2012 by Jeff Edwards

This blog post is the fourth installment in our ongoing series of articles exploring the crypto systems commonly found in various DDoS malware families.  Previous subjects have included Armageddon, Khan (now believed to be a very close “cousin” of Dirt Jumper version 5), and PonyDOS.  Today we’ll be diving deep into the details of the [...]

Share

Posted in Arbor Networks - DDoS Experts, ATLAS, Attacks and DDoS Attacks, DDoS Tools and Services, Hacktivism, Interesting Research, Malware
Read More

Not just a one-trick PonyDOS

March 8, 2012 by Jeff Edwards

Reversing the crypto used by the PonyDOS attack bot This blog post is the third installment in our ongoing series of articles exploring the crypto systems commonly found in various DDoS malware families.  In previous articles we covered the reversing of the Armageddon and Khan DDoS bots; today we will cover a new malware family [...]

Share

Posted in Arbor Networks - DDoS Experts, Botnets, DDoS Tools and Services, Reverse Engineering
Read More
« Previous Entries