Network Security Principles and Practices

Case Study: The Code Red Worm and NBAR

Code Red is a worm that spreads by attacking Microsoft IIS WWW servers and installing a Trojan in the compromised systems. After a system has become infected, it tries to infect other systems by trying to install Trojans on those systems as well. Although an attacker can use the back door to get access to a compromised system, the compromised systems themselves carry a program that stages attacks on certain web sites (such as whitehouse.org) by all infected hosts at the same time. The details of the attacks can vary from version to version of the virus.

The URL www.caida.org/analysis/security/code-red/ has a detailed analysis of the Code Red worm and its functionality.

The Code Red worm is spread and exploited ...

Get Network Security Principles and Practices now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

Network Security Principles and Practices by Saadat Malik

Case Study: The Code Red Worm and NBAR

Don’t leave empty-handed

It’s yours, free.

Check it out now on O’Reilly