[Dshield] Classic hacks

Pete Cap peteoutside at yahoo.com
Mon Jan 26 16:29:00 GMT 2004


Greetings all,
 
For the purposes of studying / explaining forensics and network traffic analysis (tcpdump, snort, etc.) it would be great if anyone had any complete records of common compromises (real or laboratory-generated).

Anyone know where I could find such a resource?
 
It would be great to point and say "*Here* he caused a buffer overrun...*this* is the code which was exectuted...*this* is what it did...now *here* you can see him setting up a user account..." etc.
 
Just a thought,
 
Regards,
 
Pete


---------------------------------
Do you Yahoo!?
Yahoo! SiteBuilder - Free web site building tool. Try it!


More information about the list mailing list