The serious harmfulness of Botnet to Internet leads scientific research institutions, colleges and universities and network security manufacturers to devote greatly to the study. At present research method of Botnet mainly focuses on the following aspects:Research of Botnet source code: Analysis of typical Botnet source code (e.g. Phabot) can help thoroughly understand internal operational principle of Botnet. However, Botnet is so various that only the same set of Botnet has many kinds of variants. It is very difficult and impractical to study all of its source codes. Meanwhile this method has another problem that what can be worked out are just its static features not dynamic ones (e.g. scale of Botnet, geographical distribution condition of zombie, etc.)
展开▼
