Source code released for Mirai the tool used to create the largest DDoS attack the internet has ever seen

Recently the world saw the largest DDoS (distributed denial of service) attack that has ever been recorded. Initial reports claimed that large numbers of DVR's, webcams, and other IoT (Internet of things) devices launched floods of network traffic. Once compromised by this tool it attempts to clean up and hide itself from being detected. The tool was written in both Go and C. The tool includes the command and control(C & C) infrastructure as well as tools used to launch attacks once device have joined the C & C server. Once connected the admin can launch any of a number of common DDoS attacks. Some of these include TCP attacks such as syn floods, ack floods, psh floods as well as UDP based attacks that include GRE attacks, Reflection attacks, DNS flood attacks and just straight up random bit attacks.

The tool itself is scanning for devices that have default passwords and by testing a number (61 to be precise) these credentials the attackers are able to find and take control of these systems. DDoS attacks are often very difficult to prevent especially when they are launched from disparate networks. These attacks are so hard to prevent because the traffic can be disguised to appear as normal traffic (should the attacker choose this option). Some of the strings in the application are hardcoded in Russian which may be an indicator of where the developer hails from. Some people suspect that this tool was leaked because the attacker was feeling the heat of law enforcement and hopes that by spreading it online that they would not be the only one in possession of the code. Have a look and check out this tool link below.

Source code: https://github.com/rosgos/Mirai-Source-Code