Irregular Expressions:

June, 2011


June 23, 2011  11:45 PM

What I have been following



Posted by: Dan O'Connor
lulzsecexposed, lulzsecurity, the jester

For the last few weeks I have not been doing a whole bunch.  I have really just been following these guys. http://twitter.com/#!/lulzsec https://th3j35t3r.wordpress.com/

June 22, 2011  12:12 AM

Zeus code walkthrough – Part 7



Posted by: Dan O'Connor
zeus analysis, zeus botnet, zeus source code, zeus walkthrough

In case you are following at home you will need to go download the following; - WireShark http://www.wireshark.org/download.html. - RegShot 


June 21, 2011  11:55 PM

Zeus code walkthrough – Part 6



Posted by: Dan O'Connor
zeus analysis, zeus botnet, zeus source code, zeus walkthrough

I am just at the point where I am ready to take our bot we built and see if we can get it to run on the target machine.  But I want to make sure we are going to collect every little thing we can. What we are going to setup to do is the following.

  1. Capture network traffic with a...


June 11, 2011  11:20 PM

Zeus code walkthrough – Part 5



Posted by: Dan O'Connor
zeus analysis, zeus botnet, zeus source code, zeus walkthrough

After the fact of building my bot, it's worth looking at what the basic config file looks like.

entry "StaticConfig"
  ;botnet "btn1"
  timer_config 60 1
  timer_logs 1 1
  timer_stats 20 1
  url_config "http://localhost/config.bin"
  remove_certs 1
  disable_tcpserver 0
 ...


Forgot Password

No problem! Submit your e-mail address below. We'll send you an e-mail containing your password.

Your password has been sent to: