[38919] in North American Network Operators' Group
Re: DDOS anecdotes
daemon@ATHENA.MIT.EDU (David Howe)
Sat Jun 23 18:32:12 2001
Message-ID: <002001c0fc33$d3401da0$01c8a8c0@default>
From: "David Howe" <DaveHowe@gmx.co.uk>
To: <nanog@merit.edu>
Date: Sat, 23 Jun 2001 23:28:08 +0100
MIME-Version: 1.0
Content-Type: text/plain;
charset="iso-8859-1"
Content-Transfer-Encoding: 7bit
Errors-To: owner-nanog-outgoing@merit.edu
"Michael Painter" <tvhawaii@shaka.com> wrote:
> I'm having a hard time understanding this. Wouldn't it be easier/simpler
for
> these crackers to just install their bots on, oh say, 20 million machines
running
> XP than the crackers having to deal with installing the bot -and- the code
to do
> the spoofing on Win95/98/98SE/98ME?
As I understand it, the spoofing code is already available as a drop-in
DLL - ZPacket.
For an example of a low-level packet sniffer written in Delphi (using that
library) and a link to the source of the library itself, see:
http://users.swing.be/francois.piette/ingussniffer.htm
