Articles

Metasploit Framework Windows Tutorial
Remote Desktop Connection
Windows Processes That May Be Dangerous
How-To use NetCat a Tutorial
Common Linux Commands
Common Ports
Netcat Commands
HTTP Response Codes
War-Google Hack Terms
Wardriving
Avoiding Social Engineering and Phishing Attacks
Intrusion Detection on Linux
Linux Intrusion Detection
Penetration Testing Guide
Penetration Testing Tools
Social Engineering Fundamentals, Part I: Hacker Tactics
Social engineering (computer security)
The Psychology of Social Engineering

The Archives

General GSO
GovernmentSecurity.org News & Suggestions
In The News
Open Topic
General Security Information
Trash Can
Exploit & Vulnerability Mailing List Archives
Trial Member Forum
Product and Program Reviews GSO Tutorials
System Security
Windows Systems
Beginners Section
Linux & Unix Systems
File Downloads
Exploit Research & Discussion Trojan & Virus Errata
Networking Security / Firewall / IDS / VPN / Routers
System Hardening
E-Mail Security
Wifi Security
Trial Member Uploads
Upload discovered Trojans & Mal ware
GSO Programming Section
C , C++ , VC++
Visual Basic.NET
Perl /CGI
Java/Javascript
PHP/XML/ASP/HTML
Assembly + Other
The Cork Board
Network Security Consultant Directory
Network Security Jobs
The Archives
Encryption Information
General Network Security
Internet Anonymity
HTTP Protocol Security
Linux Security
MS IIS Information
Exploit Articles
Programming / Tool Design
GSO Software Projects
Public Downloads
Microsoft Security Questions and Papers
Help - Search - Member List - Calendar
Full Version: Worm Simulator
GovernmentSecurity.org > System Security > Trojan & Virus Errata
ComSec
Jul 19 2005, 06:37 AM
This tool demonstrates global spreading of worms.... i have tested it and is interesting with the life expectancy of a worm and the battle to patch them

you could use this tool for a possible demonstration to a class or group you might be apart of or run

it comes with 6 simulated worms that have been analysed for for this program

Blaster
MyDoom
Netsky
Sasser
Slammer
Sobig

also a PDF with instructions


QUOTE
Symantec Research Labs Creates New Worm Simulator

When a new worm spreads around the world, people want to know if they are protected. How fast is it? How does it spread? A new simulation program developed by Symantec Research Labs not only has the answers, it also provides pictures.

The new Symantec Worm Simulator visually demonstrates how worms spread through the Internet, and how they fare against a custom network and security policy

To use the Worm Simulator, all users need to do is load a simulation file and click “play.” The Worm Simulator is distributed with simulations of six actual worms: MyDoom, Netsky, Sasser, Slammer, Blaster, and SoBig. Each simulation is tailored to accurately represent how the real worm spread in the wild. As the worm spreads, nodes in the network and on the globe start turning colors. Symantec Yellow represents patched and secure machines, while red indicates an infected machine. The SoBig virus simulation, for instance, quickly shows one corporate network turning red, while a different company turns yellow. The yellow company has more machines that are patched or running security software, and are therefore resistant to the worm......Snip


user posted image

full details and program from Symantec

http://enterprisesecurity.symantec.com/con...?articleid=5479

regards
Warlord_David
Jul 19 2005, 10:18 AM
it's interesting on how worms work, and how the worms spread so quickly from one computer vuln to the next. I was unsatisfied with the worm simulator however, because I could zoom in on the nodes, but i couldn't rotate it...
easternerd
Jul 19 2005, 06:30 PM
This was a good tool released a while ago,Not vert techie though..
It can be useful for giving presentations to your CSO's and CTO's for allocation of further budgets to equip yourself with the best Security Arsenals wink.gif
genxweb
Jul 19 2005, 10:57 PM
I seen this tool before and was disapointed by it. I read a article and thought after reading that article that this tool would act as a sandbox and show how it will populate. Other then that the tool is only good for show. Since those worms are now nearly wipped out and patched, though some still float around.
ComSec
Jul 20 2005, 07:15 AM
yes...i agree after i tried it a couple of times i almost fell a sleep.... it looks like a conference seminar big screen ..pointy stick presentation.. 2/10 from me ..still i was interested in what others thought...why symantec would release such a featureless plain tool like this is beyond me

all i can say is disappointment from such a high ranking company ..then again am not surprised..

Look at Norton ..... "yuk"
This is a "lo-fi" version of our main content. To view the full version with more information, formatting and images, please click here.
Invision Power Board © 2001-2005 Invision Power Services, Inc.