Firewall Wizards mailing list archives
nmapbot: using instant messaging as a remote administration tool
From: Abe Usher <abe.usher () sharp-ideas net>
Date: Tue, 05 Oct 2004 00:53:14 -0400
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 I've created a small proof of concept named "nmapbot" that shows it is possible to use instant messaging as a platform for remote command and control of computer systems. Purpose: - -------- To create a semi-intelligent security bot that uses instant messaging as a platform for receiving commands and returning results. Method: - ------- Using Python, the AOL TOC protocol, Bayesian language processing, and nmap 3.70, I hacked together a little bot that can run nmap and ping. Future editions will include additional commands =) Security pundits have been promoting the idea that IM is unsafe for several years... nmapbot provides some new considerations to an old idea -- using ordinarily legitimate communication channels for unintended purposes. The nmapbot rests squarely on the shoulders of python and projects such as Py-AIML, AIMLBayes, GrokItBot, and Reverend. Many thanks to fyodor et al. for the excellent tool suite in nmap 3.70. If you are interested, you can find source code and documentation for nmap bot at: http://www.sharp-ideas.net Cheers, Abe Usher, CISSP -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.4 (MingW32) Comment: Using GnuPG with Thunderbird - http://enigmail.mozdev.org iD8DBQFBYii6T3X9miqOcSQRAsmMAJ97UHc9maM8Mthwv9Q9s4IvD6XZGwCdFU/y aObBtQBYUmfU3fgRrlsTe0I= =xoTz -----END PGP SIGNATURE----- _______________________________________________ firewall-wizards mailing list firewall-wizards () honor icsalabs com http://honor.icsalabs.com/mailman/listinfo/firewall-wizards
Current thread:
- nmapbot: using instant messaging as a remote administration tool Abe Usher (Oct 05)
- Re: nmapbot: using instant messaging as a remote administration tool Kevin (Oct 06)
- Re: nmapbot: using instant messaging as a remote administration tool Paul D. Robertson (Oct 06)