
80 ◾ Malicious Bots
6.2.3 Web-Based C&C
Web-based C&C is like eye candy for a botherder wanna-be. Today Russian toolkits
can be purchased for just a few hundred dollars (USD) or less. ese toolkits may
include Web-based exploits, customized malicious code not detected by anti-virus
software, and a Web-based command and control engine that includes a back-end
database used to collect and sort stolen data. e interface of Web-based C&C
is intuitive and easy to use, making it a top choice for many botherders today.
(
See Figure 6.1.)
Bots can be configured to simply send repeated synchronization (SYN) packets
to a Web-based C&C to announce the I ...