Honeypots mailing list archives

Previous By Date Next
Previous By Thread Next

Announce: mydoom.pl (honeyd script)

From: Klaus Steding-Jessen <jessen () nic br>
Date: Mon, 16 Feb 2004 18:04:44 -0300
mydoom.pl is a simple Perl script, that works with honeyd, to emulate
the backdoor installed by the Mydoom virus.  It can:

    * log connection attempts to the backdoor; (3127/TCP, 3128/TCP,
      1080/TCP, 10080/TCP, etc)
    * save uploaded files;
    * log attempts to use the Mydoom backdoor proxy capability
      (socks4).


mydoom.pl tarball and README are available at:

     http://www.honeynet.org.br/tools/


Have fun,
Klaus.
Previous By Date Next
Previous By Thread Next

Current thread: