A year of WormCatching

Roger Thompson ICSA

By the time VB 2002 rolls around, the WormCatcher project will have been running for a whole year. This paper explains how it works and examines some of the data collected. It will also look at the shortcomings and strengths of the idea of an automated reporting system like this.

Points of interest will include:

  • How Nimda showed up initially
  • How CodeRed.b keeps going
  • When CodeRed.c and .d died out
  • How Nimda keeps going
  • Any new worms that show up prior to the conference. At the time of writing this abstract, I am feverishly adding UDP support in anticipation of SNMP worms.
  • Plans for the future.



twitter.png
fb.png
linkedin.png
hackernews.png
reddit.png

We have placed cookies on your device in order to improve the functionality of this site, as outlined in our cookies policy. However, you may delete and block all cookies from this site and your use of the site will be unaffected. By continuing to browse this site, you are agreeing to Virus Bulletin's use of data as outlined in our privacy policy.