Malware Domain List

Malware Related => Tools of the trade / Internet News => Topic started by: tjs on June 01, 2008, 10:22:16 pm

Title: Tools to monitor and visualize fast flux / web exploits
Post by: tjs on June 01, 2008, 10:22:16 pm
Hello everyone--

I'm looking for comments on what your favorite tools are to monitor and visualize:
* fast-flux botnets
* web exploits (tracking links, file types, etc)

I've seen lots of data visualization diagrams around the web.. Here are some examples:

http://www.sudosecure.net/archives/83
http://ddanchev.blogspot.com/2008/04/phishing-emails-generating-botnet.html
http://rbnexploit.blogspot.com/2007/12/rbn-new-and-improved-storm-botnet-for.html

Thanks!
TJS
Title: Re: Tools to monitor and visualize fast flux / web exploits
Post by: JohnC on June 01, 2008, 10:28:07 pm
The pictures from Dancho Danchev are generated over at Robtex
http://ddanchev.blogspot.com/2008/04/phishing-emails-generating-botnet.html
http://www.robtex.com/dns/ns1.id759.com/graph.html
Title: Re: Tools to monitor and visualize fast flux / web exploits
Post by: sowhat-x on June 02, 2008, 11:58:15 am
tjs,maybe you wanna have a look at AfterGlow?
http://afterglow.sourceforge.net/
Earlier versions were written under Perl,latter ones in Java...
simple example over Nepenthes - interesting site about visualization as well:
http://secviz.org/?q=node/87

Title: Re: Tools to monitor and visualize fast flux / web exploits
Post by: tjs on June 20, 2008, 08:55:40 pm
Very cool stuff!! Thanks for sharing :)