This is a static archive of our old Q&A Site. Please post any new questions and answers at ask.wireshark.org.

botnet traffic capture wanted

0

hi i want please any pucket captured by wireshark for any botnet using http protocol like (spyeye , bobax , clickbot , rustock)

asked 13 Dec '12, 14:39

mais's gravatar image

mais
1111
accept rate: 0%

converted to question 14 Dec '12, 02:04

grahamb's gravatar image

grahamb ♦
19.8k330206

please answer me and thanks for help me

(13 Dec '12, 14:42) mais

One Answer:

0

There are botnet sample captures at openpacket.org. Unfortunately the site is currently down. Maybe you try later ....

Article with links to the botnet capture files.

http://cyberarms.wordpress.com/2010/04/15/zeus-botnet-tcpip-packet-capture-in-netwitness-investigator/

Sourcefire offers some botnet capture files as well (at the end of the page).

http://labs.snort.org/papers/zeus.html

Regards
Kurt

answered 14 Dec '12, 06:43

Kurt%20Knochner's gravatar image

Kurt Knochner ♦
24.8k1039237
accept rate: 15%

edited 14 Dec '12, 06:44

hi thanks for your help but i have these three samples of zeus befor, so i just need (spyeye , bobax , clickbot , rustock) if you can find it for me please thanks again mais

(18 Dec '12, 05:12) mais