Librenix
Headlines | Linux | Apps | Coding | BSD | Admin | News
Information for Linux System Administration 

Network Conficker scanning

Up
vote
Down

The Conficker worm has infected several million computers since it first started spreading in late 2008. In this paper German developers presented several potential methods to repel Conficker. The approaches presented take advantage of the way Conficker patches infected systems, which can be used to remotely detect a compromised system. They also provided freely available tools including source code on their website. They also described how to use these findings which allows system administrators to quickly and easily scan their networks for infected hosts and to create rules for use in intrusion detection systems. Developers already started to integrate these findings in their network security scanner and equivalent tools like Nmap and Nessus. This article shows how to use four different methods to scan for Conficker infected machines in your network.
 read more | mail this link | score:7610 | -fn-eagle, April 2, 2009
More Sysadmin articles...

Gallery Wrapped Abstract Art

admin headlines

Tutorial: PHP5-FPM with Apache2 on OpenSUSE 12.3

Using Rex to automate your Datacentre

VirtualBox Tutorial: Clone live virtual machines with LVM snapshots

OpenVZ Mount Tutorial: Mount Host Devices, Partitions, Directories in Containers (Debian, Ubuntu)

Quckly Install Scrollout F1 Anti-Spam Firewall on Ubuntu

LAMP Tutorial: Apache2, PHP5, MySQL on Ubuntu 12.04 LTS

 

Firefox sidebar

Site map

Site info

News feed

Features

Login
(to post)

Search

 
Articles are owned by their authors.   © 2000-2012 Ray Yeargin