aimBot

By Roger on October 6, 2004 4:23 PM |

Saw this posted over on NTBugtraq. Sharp-ideas.net has an example program that uses AIM to run programs and send the result back to the requestor. Basically a wrapper interacts with the person sending the message and it runs a basic set of commands. The example uses nmap, but a fleet of hacking/reconaisance tools could potentially be used. AIM works very hard at traversing firewalls. So someone outside a firewall could send a command to a computer inside the firewall.

This solution doesn't sound like it will scale very well. I suppose with AIM groups you could control a bunch of bots. A one-to-one connection could already be pulled off by sending someone a trojan and then waiting for it to connect back on a specific port.

Categories

General

About this Entry

This page contains a single entry by Roger published on October 6, 2004 4:23 PM.

NCSA Survey says: Most have no clue how insecure they are was the previous entry in this blog.

Microsoft Monitor takes aim at shoddy news.com reporting is the next entry in this blog.

Find recent content on the main index or look in the archives to find all content.

Subscribe to feed Subscribe to this blog's feed
Add to Google
Please contact me by leaving a comment where appropriate. Otherwise, you can click here to reveal an email address for me.
Got Backups? Get Safe Online Remember Rick Rescorla Powered by Movable Type 4.2-en

Search