Packet Storm - Information Security News, Files, Tools, Exploits, Advisories and Whitepapers http://packetstormsecurity.org/ en-us Mon, 28 May 2012 04:21:30 GMT 144400 http://packetstormsecurity.org/ http://www.google-analytics.com/__utm.gif?utmwv=1.3&utmn=1380281853&utmcs=ISO-8859-1&utmsr=31337x31337&utmsc=32-bit&utmul=en-us&utmje=0&utmfl=-&utmcn=1&utmdt=Files%u2248%20Packet%20Storm&utmhn=packetstormsecurity.org&utmr=-&utmp=%2Fdistributed%2Fshaft_analysis.txt%2F&utmac=UA-18885198-1&utmcc=__utma%3D32867617.1380281853.1338178890.1338178890.1338178890.1%3B%2B__utmz%3D32867617.1338178890.1.1.utmccn%3D(direct)%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none) http://packetstormsecurity.org/files/16957/shaft_analysis.txt http://packetstormsecurity.org/files/16957/shaft_analysis.txt http://packetstormsecurity.org/files/16957/shaft_analysis.txt.html Fri, 24 Mar 2000 23:20:50 GMT An analysis of the "Shaft" distributed denial of service tool. Shaftnode was recovered initially in November, 1999. Distinctive features are the ability to switch handler servers and handler ports on the fly, making detection by intrusion detection tools difficult from that perspective, a "ticket" mechanism to link transactions, and the particular interest in packet statistics, showing the "yield" of the DDoS network as a whole.