Welcome to Scribd, the world's digital library. Read, publish, and share books and documents. See more
Download
Standard view
Full view
of .
Save to My Library
Look up keyword
Like this
2Activity
0 of .
Results for:
No results containing your search query
P. 1
Project Grey Goose Phase I Report

Project Grey Goose Phase I Report

Ratings:

4.81

(16)
|Views: 10,824 |Likes:
Published by projgreygoose
Project Grey Goose is, in technology terms, a pure play Open Source Intelligence (OSINT) initiative launched on August 22, 2008 to examine how the Russian cyber war was conducted against Georgian Web sites and if the Russian government was involved or if it was entirely a grass roots movement by patriotic Russian hackers.
Project Grey Goose is, in technology terms, a pure play Open Source Intelligence (OSINT) initiative launched on August 22, 2008 to examine how the Russian cyber war was conducted against Georgian Web sites and if the Russian government was involved or if it was entirely a grass roots movement by patriotic Russian hackers.

More info:

Published by: projgreygoose on Oct 17, 2008
Copyright:Traditional Copyright: All rights reserved

Availability:

Read on Scribd mobile: iPhone, iPad and Android.
download as PDF or read online from Scribd
See more
See less

01/25/2014

pdf

 
Project Grey Goose: Phase I Report17 October 2008
Russia/Georgia Cyber War 
 – 
 Findings and Analysis
Source: Xakep.ru forum
 
 
Page
2
of 24
 
About This Document
Project Grey Goose is, in technology terms, a pure play Open Source Intelligence (OSINT)initiative launched on August 22, 2008 to examine how the Russian cyber war wasconducted against Georgian Web sites and if the Russian government was involved or ifit was entirely a grass roots movement by patriotic Russian hackers.
Project Grey Goose’s
remit was to utilize a combination of open sources, tools andhuman skill sets to probe the matter from new angles with fresh evidence. It is an entirelyvolunteer effort with no funding,This Phase I report was produced from data collected from two Russian hacker forums,www.xakep.ru and www.stopgeorgia.ru,along with network log files detailing 29,000 status events indicating the Up/Down status of 149 Georgian web sites
1
. The Xakep.ruforum was selected from among 4 possible choices as the most likely to contain relevantposts on our subject. The password-protected StopGeorgia.ru forum was discovered viathe Xakep forum. The means and methods used to gain access to StopGeorgia.ru arebeyond the scope of this document. Our collection effort was done manually in Russian,and then machine-translated to English.
Project Grey Goose |Intelfusion@hush.com| All Rights Reserved | 2008
1
Georgian Research and Educational Networking Association (GRENA) and GeorgiaCERT(http://www.grena.ge/eng/cert.html) 
 
 
Page
3
of 24
 
I.
 
Key Judgments
We assess with high confidence that the Russian government will likelycontinue its practice of distancing itself from the Russian nationalistichacker community thus gaining deniability while passively supporting andenjoying the strategic benefits of their actions.
While forum members are quite open about their targets and methods, we wereunable in this round of collection/analysis to find any references to stateorganizations guiding or directing attacks. There are several possible explanationsas to why this is the case.There was no external involvement or direction from State organizationsOur collection efforts were not far-reaching or deep enough to identifythese connectionsInvolvement by State organizations was done in an entirely non-attributable wayThere is, however, historical evidence that past and present members of theRussian government endorse cyber warfare and/or cyber attacks initiated by
their country’s hacker population. The names of these officials follow. Details of
their communication are revealed in the Discussion section.
General Vladislav Sherstyuk 
2
is the Russian Federation Security Council deputysecretary and former Deputy Director of the Federal Agency for Government
Communications and Information (FAPSI). In 2003, FAPSI’s functio
ns were dividedbetween the Federal Security Service (FSB) and the Ministry of Defense
3
.
Nikolai Kuryanovich
is an MP for the Liberal Democratic Party of Russia. He isclosely affiliated with Vladimir Volfovich Zhirinovsky
4
, who founded and leads theLiberal Democratic Party of Russia (LDPR) and who is Vice-Chairman of the StateDumo.
Oleg Gordievsky
5
was a Colonel in the KGB and KGB Resident-designate andbureau chief in London until his defection to MI6 in 1985.
We assess with high confidence that nationalistic Russian hackers arelikely adaptive adversaries engaged in aggressively finding more efficientways to disable networks.
Members of the StopGeorgia.ru and Xakep.ru forums spent a significant amountof time discussing the merits and drawbacks of different kinds of malware,including traditional Distributed Denial of Service (DDoS) tactics and tools. Weobserved a consistent up-tick in discussions and attacks focused on abusing
2
http://www2.nupi.no/cgi-win//Russland/personer.exe?1136
3
4
http://en.wikipedia.org/wiki/Vladimir_Zhirinovsky
5
http://en.wikipedia.org/wiki/Oleg_Gordievsky

Activity (2)

You've already reviewed this. Edit your review.
1 thousand reads
1 hundred reads
JoukoSalonen liked this
Dae_Jang_Geum liked this
Nitish Kumar liked this
Piyush Dahad liked this
Raj Kumar S liked this
Pancholi Chirag liked this

You're Reading a Free Preview

Download
/*********** DO NOT ALTER ANYTHING BELOW THIS LINE ! ************/ var s_code=s.t();if(s_code)document.write(s_code)//-->