Hale Botnet Monitoring Code posted online

Any research, news or information regarding the wide variety of techniques criminals use to take over your computers or web servers.

Hale Botnet Monitoring Code posted online

Postby meep » Mon Mar 21, 2011 11:08 am

This was tweeted recently by sempersecurus:
Hale: A modular and networked botnet C&C monitoring and logging system http://bit.ly/dGxRB1


Hale botnet code on github.com

Botnet command & control monitor ...

Hale is a botnet command & control monitor/spy with a modular design to easily develop new modules that monitor new protocols used by C&C servers. Hale comes with IRC and HTTP monitors developed with Twisted to handle scalability of a large amount of connections. Theses modules have configurable protocol grammar and bot settings but can also be modified to fit your needs. All captured logs and files are saved to a database and in case of IRC, tracked IP numbers too. ...


[SiL Edited the title to more accurately reflect what Hale does.]
User avatar
meep
Spammers' Nightmare
 
Posts: 2777
Joined: Thu Apr 05, 2007 4:10 pm

Re: Hale Botnet Code posted online

Postby spamislame » Mon Mar 21, 2011 2:40 pm

Correction: this is not a botnet itself. It's a botnet C&C monitor / spy program.

SiL
User avatar
spamislame
Site Admin
 
Posts: 5057
Joined: Tue May 09, 2006 9:18 am

Re: Hale Botnet Monitoring Code posted online

Postby meep » Mon Mar 21, 2011 9:22 pm

Good to point out corrections, SiL! Thanks.

IIRC: and it is off-topic, but related to botnets: ZeuS malware is technically a trojan but utilizes a botnet to spread itself.
User avatar
meep
Spammers' Nightmare
 
Posts: 2777
Joined: Thu Apr 05, 2007 4:10 pm


Return to Botnets, Hijacks and Hacking

Who is online

Users browsing this forum: No registered users and 1 guest