Project Honeynet has challenged you to make sence of an, at first sight, meaningless bunch of UDP packets.

The Challenge:
On the evening of Feb 15th, three different members of the Honeynet Research Alliance received a flurry of strange UDP packets, that at first look seemed to have no apparent purpose. This month's Scan of the Month challenge is to understand the purpose of these packets (...)

More information can be found here (http://project.honeynet.org/scans/scan21/).

Sound's fun.....
What is UDP?
lol
- Noia
:D

Gawd :)

UDP is a protocol used in the TCP/IP family. TCP uses a three way handshake between clients to ensure each datagram reaches its destination correctly. UDP does not have a simmilar handshake. This results in a less reliable connection, but since there's less overhead it's considerably faster. FTP (File Transfer Protocol) for example, uses TCP. TFTP (Trivial File Transfer Protocol) uses UDP.

Good definition, but I think he was joking when he asked that question...

Has anyone worked on this much? I've looked at it quite a bit, but I must just be dumb when it comes to UDP. Could anyone give me a pointer in the right direction? I don't want the answer, just a hint if that's possible.

yeah im with str34m3r, i cant make much sense of it either.

I got it! I got it! I got it!

Hints to the others:
1) UDP is a commonly used protocol for gaming.
2) Think Gaming Server
3) Think Unreal (hehehehe)

Life is exciting in the computer world when you read between the lines :cool:

CyberNetNinja

Jesus is about Life, Reality and Relationship. Christianity is not a religion!

Well since the actual dates of this passed last month, I'd simply say I'd rely upon the info of those that looked at the logs and I am not in the project but if one takes that info and posts then tosses into that factor building a profile of events in total. This need to boast then the answer to the UDP's lay in the hint.

Originally posted here (http://www.AntiOnline.com/showthread.php?threadid=#post) by jpisanic
I got it! I got it! I got it!

Hints to the others:
1) UDP is a commonly used protocol for gaming.
2) Think Gaming Server
3) Think Unreal (hehehehe)

Life is exciting in the computer world when you read between the lines :cool:

CyberNetNinja

Jesus is about Life, Reality and Relationship. Christianity is not a religion!


Hum, this has nothing to do with the packets in the challenge... I don't know how you arrived at that conlcusion...

BTW, for those interested, the anwser has been posted on the site...

Ammo

Thanxs for tha challenge!

Wil C what I come ^ with in my studies.

Follow tha white rabbit!

For anyone who wants a pointer:

Take a close look at the UDP traffic and see what it is missing that the TCP traffic has. Also, consider what is in the payload of the packets. Once you get this, consider why and what the purpose may be. This should get you on your way.

Of course you can read the results that are on the page (like mentioned above).

I did participate but I did not get mentioned :-(
Oh well, there is always next time.