Journal ArticleDOI
Inside the Slammer worm
David Moore,Vern Paxson,Stefan Savage,Colleen Shannon,Stuart Staniford,Nicholas Weaver +5 more
- Vol. 1, Iss: 4, pp 33-39
TLDR
The Slammer worm spread so quickly that human response was ineffective, and why was it so effective and what new challenges do this new breed of worm pose?Abstract:
The Slammer worm spread so quickly that human response was ineffective. In January 2003, it packed a benign payload, but its disruptive capacity was surprising. Why was it so effective and what new challenges do this new breed of worm pose?.read more
Citations
More filters
Cyber Early Warning System (CEWAS)
Rajesh Talpade,Abhrajit Ghosh +1 more
TL;DR: A system architecture and software implementation based on the InFilter approach that can be used at Border Routers of large IP networks to detect spoofed IP traffic and compares favorably with state-of-the-art in Intrusion Detection Systems that do not use signatures of attacks.
Evaluation of a multi-agent system for simulation and analysis of distributed denial-of-service attacks
TL;DR: The result generated by the MASDK simulation tool was used to evaluate the performance of the tool in simulating the DDoS attack over the networking environment and to develop and verify the effectiveness of a defense strategy.
Proceedings ArticleDOI
Combating self-learning worms by using predators
TL;DR: Using the interaction model, the basic reproduction number of self-learning worms is obtained and the performance of the proposed models is effective in combating such worms, in terms of decreasing the the number of hosts infected by the prey and reducing the prey propagation speed.
Proceedings ArticleDOI
A New Approach to Automatically Detect Worms
TL;DR: Data stream based anomaly detection is used to screen out anomalous network data flow, subsequently, the signature is extracted and it is updated to the misuse detection pattern.
Book ChapterDOI
Hybrid Intrusion Detection System for Worm Attacks Based on Their Network Behavior
TL;DR: This work uses a deep neural network to successfully classify network traces of five Internet worms, Sasser, Slammer, Eternal Rocks, WannaCry, and Petya, and includes a visualization that allows for further analysis and tracing of the network behavior of detected worms.
References
More filters
Proceedings Article
Inferring internet denial-of-service activity
TL;DR: This article presents a new technique, called “backscatter analysis,” that provides a conservative estimate of worldwide denial-of-service activity, and believes it is the first to provide quantitative estimates of Internet-wide denial- of- service activity.
Proceedings Article
How to Own the Internet in Your Spare Time
TL;DR: This work develops and evaluates several new, highly virulent possible techniques: hit-list scanning, permutation scanning, self-coordinating scanning, and use of Internet-sized hit-lists (which creates a flash worm).
Proceedings ArticleDOI
Code-Red: a case study on the spread and victims of an internet worm
TL;DR: The experience of the Code-Red worm demonstrates that wide-spread vulnerabilities in Internet hosts can be exploited quickly and dramatically, and that techniques other than host patching are required to mitigate Internet worms.
Proceedings ArticleDOI
Internet quarantine: requirements for containing self-propagating code
TL;DR: The design space of worm containment systems is described using three key parameters - reaction time, containment strategy and deployment scenario - and the lower bounds that any such system must exceed to be useful today are demonstrated.
Journal ArticleDOI
Inferring Internet denial-of-service activity
TL;DR: In this paper, the authors present a new technique, called backscatter analysis, that provides a conservative estimate of worldwide denial-of-service activity, and quantitatively assess the number, duration and focus of attacks, and qualitatively characterize their behavior.