{"id":343,"date":"2008-04-30T14:20:29","date_gmt":"2008-04-30T13:20:29","guid":{"rendered":"http:\/\/daniel.haxx.se\/blog\/?p=343"},"modified":"2008-04-30T14:20:29","modified_gmt":"2008-04-30T13:20:29","slug":"taking-down-p2p-botnets","status":"publish","type":"post","link":"https:\/\/daniel.haxx.se\/blog\/2008\/04\/30\/taking-down-p2p-botnets\/","title":{"rendered":"Taking down P2P botnets"},"content":{"rendered":"<p>Five german\/french researchers wrote up this very interesting doc (9 page PDF!) called &#8220;<a href=\"http:\/\/www.honeyblog.org\/junkyard\/paper\/storm-leet08.pdf\">Measurements and Mitigation of Peer-to-Peer-based Botnets: A Case Study on StormWorm<\/a>&#8221; about one of the biggest and most persistent botnets out in the wild: <a href=\"http:\/\/en.wikipedia.org\/wiki\/Storm_botnet\"><em>Storm<\/em><\/a>. It is used for spam and DDOS attacks, has up to 40,000 daily peers and the country hosting the largest amount of bots is the USA.<\/p>\n<p>Anyway, their story on how it works, how they work on infecting new clients, how the researchers worked to infect it and disrupt the botnet communication is a good read.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>Five german\/french researchers wrote up this very interesting doc (9 page PDF!) called &#8220;Measurements and Mitigation of Peer-to-Peer-based Botnets: A Case Study on StormWorm&#8221; about one of the biggest and most persistent botnets out in the wild: Storm. It is used for spam and DDOS attacks, has up to 40,000 daily peers and the country &hellip; <a href=\"https:\/\/daniel.haxx.se\/blog\/2008\/04\/30\/taking-down-p2p-botnets\/\" class=\"more-link\">Continue reading <span class=\"screen-reader-text\">Taking down P2P botnets<\/span> <span class=\"meta-nav\">&rarr;<\/span><\/a><\/p>\n","protected":false},"author":5,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[133],"tags":[160,428],"class_list":["post-343","post","type-post","status-publish","format-standard","hentry","category-security","tag-botnet","tag-security"],"_links":{"self":[{"href":"https:\/\/daniel.haxx.se\/blog\/wp-json\/wp\/v2\/posts\/343","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/daniel.haxx.se\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/daniel.haxx.se\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/daniel.haxx.se\/blog\/wp-json\/wp\/v2\/users\/5"}],"replies":[{"embeddable":true,"href":"https:\/\/daniel.haxx.se\/blog\/wp-json\/wp\/v2\/comments?post=343"}],"version-history":[{"count":0,"href":"https:\/\/daniel.haxx.se\/blog\/wp-json\/wp\/v2\/posts\/343\/revisions"}],"wp:attachment":[{"href":"https:\/\/daniel.haxx.se\/blog\/wp-json\/wp\/v2\/media?parent=343"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/daniel.haxx.se\/blog\/wp-json\/wp\/v2\/categories?post=343"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/daniel.haxx.se\/blog\/wp-json\/wp\/v2\/tags?post=343"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}