Security: New BotSniffer better able to detect foul stench of botnets
February 23rd, 2008 Posted/Linked by Shanmuga ShareThis
"Researchers at Georgia Tech have published a paper on BotSniffer—a program they’ve designed to detect and disable botnets. Botsniffer is not the only bot-detection program available, but the Georgia Tech research team believes that the program’s approach to the botnet issue results in a better correlation rate and a lower number of false positives.
BotSniffer is designed to detect botnets using either IRC or HTTP protocols, i.e., "push" or "pull" botnets. The program uses a detection method referred to as "Spatial-Temporal Correlation and Similarity" when searching for the presence of a botnet over the network." - Content courtesy of New BotSniffer better able to detect foul stench of botnets
If you enjoyed this post, make sure you subscribe to my RSS feed!
This entry was posted on Saturday, February 23rd, 2008 at 12:13 pm and is filed under Botnets, Malware, Security. You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site.
