Toolkit
Story: Email from 'Citibank' conceals Trojan
Posted by: Anonymous (Sunday 23 November 2003, 7:04 AM)
I am a novice when it comes to Trojan horses, but if I understand this right a Trojan communicates its "payload" back to it's client through an irc , an icq or e-mail, or some similar medium.
Is it possible to put sniffers on servers to see this type of activity or does the traffic coming from the Trojan, look inoccuous, or indisernable from standard traffic?
Full Talkback thread
