Script kiddie - Revision history

Etenne at 18:50, 13 February 2016

2016-02-13T18:50:03Z

← Older revision		Revision as of 18:50, 13 February 2016
Line 1:		Line 1:
	'''Script kiddie''' or '''skiddie'''<ref name="Reg01"/> (also known as ''skid'', ''script bunny'',<ref>{{cite web \|url=http://www.spywareguide.com/term_show.php?id=92 \|title=Script bunny - definition \|publisher=SpywareGuide.com}}</ref> ''script kitty'')<ref>Baldwin, Clare; Christie, Jim (July 9, 2009). [http://in.reuters.com/article/idINTRE5680CC20090709 "Cyber attacks may not have come from North Korea"]. San Francisco; Reuters.com.</ref> in programming culture is an unskilled individual who uses scripts or programs developed by others to attack computer systems and networks, and deface websites. It is generally assumed that script kiddies are juveniles who lack the ability to write sophisticated programming programs or exploits on their own, and that their objective is to try to impress their friends or gain credit in computer-enthusiast communities.<ref name="zdnet">{{cite web\| last=Lemos\| first=Robert\| date=July 12, 2000 \|url=http://www.zdnet.com/script-kiddies-the-nets-cybergangs-3002080125/ <!--http://www.zdnet.com/news/script-kiddies-the-nets-cybergangs/96163-->\| publisher=[[ZDNet]]\| title=Script kiddies: The Net's cybergangs\| accessdate=2007-04-24}}</ref> The term is generally considered to be a pejorative.		'''Script kiddie''' or '''skiddie'''<ref name="Reg01"/> (also known as ''skid'', ''script bunny'',<ref>{{cite web \|url=http://www.spywareguide.com/term_show.php?id=92 \|title=Script bunny - definition \|publisher=SpywareGuide.com}}</ref> ''script kitty'')<ref>Baldwin, Clare; Christie, Jim (July 9, 2009). [http://in.reuters.com/article/idINTRE5680CC20090709 "Cyber attacks may not have come from North Korea"]. San Francisco; Reuters.com.</ref> in programming culture is an unskilled individual who uses scripts or programs developed by others to attack computer systems and networks, and deface websites (See: [[DDoS]]). It is generally assumed that script kiddies are juveniles who lack the ability to write sophisticated programming programs or exploits on their own, and that their objective is to try to impress their friends or gain credit in computer-enthusiast communities.<ref name="zdnet">{{cite web\| last=Lemos\| first=Robert\| date=July 12, 2000 \|url=http://www.zdnet.com/script-kiddies-the-nets-cybergangs-3002080125/ <!--http://www.zdnet.com/news/script-kiddies-the-nets-cybergangs/96163-->\| publisher=[[ZDNet]]\| title=Script kiddies: The Net's cybergangs\| accessdate=2007-04-24}}</ref> The term is generally considered to be a pejorative.

	==Characteristics==		==Characteristics==

Etenne at 17:47, 23 January 2015

2015-01-23T17:47:17Z

← Older revision		Revision as of 17:47, 23 January 2015
Line 1:		Line 1:
	'''~~script~~ kiddie''' or '''skiddie'''<ref name="Reg01"/> (also known as ''skid'', ''script bunny'',<ref>{{cite web \|url=http://www.spywareguide.com/term_show.php?id=92 \|title=Script bunny - definition \|publisher=SpywareGuide.com}}</ref> ''script kitty'')<ref>Baldwin, Clare; Christie, Jim (July 9, 2009). [http://in.reuters.com/article/idINTRE5680CC20090709 "Cyber attacks may not have come from North Korea"]. San Francisco; Reuters.com.</ref> in programming culture is an unskilled individual who uses scripts or programs developed by others to attack computer systems and networks, and deface websites. It is generally assumed that script kiddies are juveniles who lack the ability to write sophisticated programming programs or exploits on their own, and that their objective is to try to impress their friends or gain credit in computer-enthusiast communities.<ref name="zdnet">{{cite web\| last=Lemos\| first=Robert\| date=July 12, 2000 \|url=http://www.zdnet.com/script-kiddies-the-nets-cybergangs-3002080125/ <!--http://www.zdnet.com/news/script-kiddies-the-nets-cybergangs/96163-->\| publisher=[[ZDNet]]\| title=Script kiddies: The Net's cybergangs\| accessdate=2007-04-24}}</ref> The term is generally considered to be a pejorative.		'''Script kiddie''' or '''skiddie'''<ref name="Reg01"/> (also known as ''skid'', ''script bunny'',<ref>{{cite web \|url=http://www.spywareguide.com/term_show.php?id=92 \|title=Script bunny - definition \|publisher=SpywareGuide.com}}</ref> ''script kitty'')<ref>Baldwin, Clare; Christie, Jim (July 9, 2009). [http://in.reuters.com/article/idINTRE5680CC20090709 "Cyber attacks may not have come from North Korea"]. San Francisco; Reuters.com.</ref> in programming culture is an unskilled individual who uses scripts or programs developed by others to attack computer systems and networks, and deface websites. It is generally assumed that script kiddies are juveniles who lack the ability to write sophisticated programming programs or exploits on their own, and that their objective is to try to impress their friends or gain credit in computer-enthusiast communities.<ref name="zdnet">{{cite web\| last=Lemos\| first=Robert\| date=July 12, 2000 \|url=http://www.zdnet.com/script-kiddies-the-nets-cybergangs-3002080125/ <!--http://www.zdnet.com/news/script-kiddies-the-nets-cybergangs/96163-->\| publisher=[[ZDNet]]\| title=Script kiddies: The Net's cybergangs\| accessdate=2007-04-24}}</ref> The term is generally considered to be a pejorative.

	==Characteristics==		==Characteristics==

Etenne at 17:45, 23 January 2015

2015-01-23T17:45:59Z

← Older revision		Revision as of 17:45, 23 January 2015
Line 13:		Line 13:

	==See also==		==See also==
			*[[Anonymous (group)]]
	==External links==		==External links==

	[[Category:Vigilante]]		[[Category:Vigilante]]

Etenne at 17:45, 23 January 2015

2015-01-23T17:45:12Z

← Older revision		Revision as of 17:45, 23 January 2015
Line 16:		Line 16:
	==External links==		==External links==

	[[Category:~~Draft~~]]		[[Category:Vigilante]]

Etenne: /* Characteristics */

2015-01-23T17:43:43Z

Characteristics

← Older revision		Revision as of 17:43, 23 January 2015
Line 2:		Line 2:

	==Characteristics==		==Characteristics==
	In a [[Carnegie Mellon]] report prepared for the [[U.S. Department of Defense]] in 2005, script kiddies are defined as <blockquote>"The more immature but unfortunately often just as dangerous exploiter of security lapses on the Internet. The typical script kiddy uses existing and frequently well known and easy-to-find techniques and programs or scripts to search for and exploit weaknesses in other computers on the Internet—often randomly and with little regard or perhaps even understanding of the potentially harmful consequences.<ref>{{cite web\|author=Mead, Nancy R.; Hough, Eric D.; Stehney, Theodore R. III \|date=May 16, 2006 \|url=http://www.cert.org/archive/pdf/05tr009.pdf \|title=Security Quality Requirements Engineering (SQUARE) Methodology CMU/SEI-2005-TR-009 \|format=PDF \|work=Carnegie Mellon University, DOD \|publisher=CERT.org}}</ref></blockquote>		In a Carnegie Mellon report prepared for the U.S. Department of Defense in 2005, script kiddies are defined as <blockquote>"The more immature but unfortunately often just as dangerous exploiter of security lapses on the Internet. The typical script kiddy uses existing and frequently well known and easy-to-find techniques and programs or scripts to search for and exploit weaknesses in other computers on the Internet—often randomly and with little regard or perhaps even understanding of the potentially harmful consequences.<ref>{{cite web\|author=Mead, Nancy R.; Hough, Eric D.; Stehney, Theodore R. III \|date=May 16, 2006 \|url=http://www.cert.org/archive/pdf/05tr009.pdf \|title=Security Quality Requirements Engineering (SQUARE) Methodology CMU/SEI-2005-TR-009 \|format=PDF \|work=Carnegie Mellon University, DOD \|publisher=CERT.org}}</ref></blockquote>

	Script kiddies have at their disposal a large number of effective, easily downloadable malicious programs capable of breaching computers and networks.<ref name="zdnet"/> Such programs have included remote denial-of-service [[WinNuke]],<ref>{{cite book \|author=Klevinsky, T. J. ; Laliberte, Scott; Gupta, Ajay \|year=2002 \|url=http://books.google.com/books?id=31Kis_vaadwC&pg=PA409&lpg=PA409#v=onepage&q&f=false \|title=Hack I.T.: security through penetration testing\| publisher=[[Addison-Wesley]] \|isbn=978-0-201-71956-7}}</ref> ~~[[Trojan horse (computing)\|trojan]]s [[~~Back Orifice]], [[NetBus]], [[Sub7]],<ref>{{cite web\|author=Granneman, Scott \|date=January 28, 2004 \| url=http://www.theregister.co.uk/2004/01/28/a_visit_from_the_fbi/ \|title=A Visit from the FBI - We come in peace \|publisher=[[The Register]]}}</ref> and [[ProRat]], vulnerability scanner/injector kit [[Metasploit]],<ref>{{cite web\|author=Biancuzzi, Federico \|date=March 27, 2007 \|url=http://www.securityfocus.com/columnists/439 \|title=Metasploit 3.0 day \|publisher=SecurityFocus.com}}</ref> and often software intended for legitimate security auditing.<ref name="Rodriguez">{{Cite web \|url=https://www.htbridge.com/publication/the_growing_hacking_threat_to_websites.pdf \|title=The Growing Hacking Threat to Websites: An Ongoing Commitment to Web Application Security \|last1=Rodriguez \|first1=Chris \|last2=Martinez \|first2=Richard \|publisher=Frost & Sullivan \|date=September 2, 2012<!--see pdf--> \|accessdate=November 30, 2013}}</ref> A survey of college students in 2010, supported by UK's [[Association of Chief Police Officers]], indicated a high level of interest in beginning hacking: "23% of 'uni' students have hacked into IT systems [...] 32% thought hacking was 'cool' [...] 28% considered it to be easy."<ref>{{cite web\|author=Zax, David\|date=September 22, 2010\|url=http://www.fastcompany.com/1690541/it-security-firm-fear-students\|title=IT Security Firm: Fear Students\|publisher=Fast Company}}</ref>		Script kiddies have at their disposal a large number of effective, easily downloadable malicious programs capable of breaching computers and networks.<ref name="zdnet"/> Such programs have included remote denial-of-service WinNuke,<ref>{{cite book \|author=Klevinsky, T. J. ; Laliberte, Scott; Gupta, Ajay \|year=2002 \|url=http://books.google.com/books?id=31Kis_vaadwC&pg=PA409&lpg=PA409#v=onepage&q&f=false \|title=Hack I.T.: security through penetration testing\| publisher=[[Addison-Wesley]] \|isbn=978-0-201-71956-7}}</ref> trojans Back Orifice, NetBus, Sub7,<ref>{{cite web\|author=Granneman, Scott \|date=January 28, 2004 \| url=http://www.theregister.co.uk/2004/01/28/a_visit_from_the_fbi/ \|title=A Visit from the FBI - We come in peace \|publisher=[[The Register]]}}</ref> and ProRat, vulnerability scanner/injector kit Metasploit,<ref>{{cite web\|author=Biancuzzi, Federico \|date=March 27, 2007 \|url=http://www.securityfocus.com/columnists/439 \|title=Metasploit 3.0 day \|publisher=SecurityFocus.com}}</ref> and often software intended for legitimate security auditing.<ref name="Rodriguez">{{Cite web \|url=https://www.htbridge.com/publication/the_growing_hacking_threat_to_websites.pdf \|title=The Growing Hacking Threat to Websites: An Ongoing Commitment to Web Application Security \|last1=Rodriguez \|first1=Chris \|last2=Martinez \|first2=Richard \|publisher=Frost & Sullivan \|date=September 2, 2012<!--see pdf--> \|accessdate=November 30, 2013}}</ref> A survey of college students in 2010, supported by UK's Association of Chief Police Officers, indicated a high level of interest in beginning hacking: "23% of 'uni' students have hacked into IT systems [...] 32% thought hacking was 'cool' [...] 28% considered it to be easy."<ref>{{cite web\|author=Zax, David\|date=September 22, 2010\|url=http://www.fastcompany.com/1690541/it-security-firm-fear-students\|title=IT Security Firm: Fear Students\|publisher=Fast Company}}</ref>

	Script kiddies vandalize websites both for the thrill of it and to increase their reputation among their peers.<ref name="zdnet"/> Some more malicious script kiddies have used virus toolkits to create and propagate the [[Anna Kournikova ~~(computer virus)\|Anna Kournikova]]~~ and ~~[[ILOVEYOU\|~~Love Bug]] viruses.<ref name="Reg01">{{cite web\|author=Leyden, John\|date=February 21, 2001\|url=http://www.theregister.co.uk/2001/02/21/virus_toolkits_are_skiddie_menace/\|title=Virus toolkits are s'kiddie menace \|publisher=[[The Register]]}}</ref>		Script kiddies vandalize websites both for the thrill of it and to increase their reputation among their peers.<ref name="zdnet"/> Some more malicious script kiddies have used virus toolkits to create and propagate the Anna Kournikova and Love Bug viruses.<ref name="Reg01">{{cite web\|author=Leyden, John\|date=February 21, 2001\|url=http://www.theregister.co.uk/2001/02/21/virus_toolkits_are_skiddie_menace/\|title=Virus toolkits are s'kiddie menace \|publisher=[[The Register]]}}</ref>
	Script kiddies lack, or are only developing, programming skills sufficient to understand the effects and side effects of their actions. As a result, they leave significant traces which lead to their detection, or directly attack companies which have detection and countermeasures already in place, or in recent cases, leave automatic crash reporting turned on.<ref>{{cite web\|author=Taylor, Josh \|date=August 26, 2010\|url=http://www.zdnet.com.au/hackers-accidentally-give-microsoft-their-code-339305548.htm?omnRef=NULL \|title=Hackers accidentally give Microsoft their code\|publisher=ZDNet.com.au}}</ref><ref>{{cite web\|author=Ms. Smith\|date=August 28, 2010\|url=http://www.networkworld.com/community/node/65571 \|title=Error Reporting Oops: Microsoft, Meter Maids and Malicious Code\|work=Privacy and Security Fanatic\|publisher=[[Network World]]}}</ref>		Script kiddies lack, or are only developing, programming skills sufficient to understand the effects and side effects of their actions. As a result, they leave significant traces which lead to their detection, or directly attack companies which have detection and countermeasures already in place, or in recent cases, leave automatic crash reporting turned on.<ref>{{cite web\|author=Taylor, Josh \|date=August 26, 2010\|url=http://www.zdnet.com.au/hackers-accidentally-give-microsoft-their-code-339305548.htm?omnRef=NULL \|title=Hackers accidentally give Microsoft their code\|publisher=ZDNet.com.au}}</ref><ref>{{cite web\|author=Ms. Smith\|date=August 28, 2010\|url=http://www.networkworld.com/community/node/65571 \|title=Error Reporting Oops: Microsoft, Meter Maids and Malicious Code\|work=Privacy and Security Fanatic\|publisher=[[Network World]]}}</ref>

Etenne: Created page with "'''script kiddie''' or '''skiddie''' (also known as ''skid'', ''script bunny'',{{cite web |url=http://www.spywareguide.com/term_show.php?id=92 |title=S..."

2015-01-23T15:58:28Z

Created page with "'''script kiddie''' or '''skiddie'''<ref name="Reg01"/> (also known as ''skid'', ''script bunny'',<ref>{{cite web |url=http://www.spywareguide.com/term_show.php?id=92 |title=S..."

New page

'''script kiddie''' or '''skiddie'''<ref name="Reg01"/> (also known as ''skid'', ''script bunny'',<ref>{{cite web |url=http://www.spywareguide.com/term_show.php?id=92 |title=Script bunny - definition |publisher=SpywareGuide.com}}</ref> ''script kitty'')<ref>Baldwin, Clare; Christie, Jim (July 9, 2009). [http://in.reuters.com/article/idINTRE5680CC20090709 "Cyber attacks may not have come from North Korea"]. San Francisco; Reuters.com.</ref> in programming culture is an unskilled individual who uses scripts or programs developed by others to attack computer systems and networks, and deface websites. It is generally assumed that script kiddies are juveniles who lack the ability to write sophisticated programming programs or exploits on their own, and that their objective is to try to impress their friends or gain credit in computer-enthusiast communities.<ref name="zdnet">{{cite web| last=Lemos| first=Robert| date=July 12, 2000 |url=http://www.zdnet.com/script-kiddies-the-nets-cybergangs-3002080125/ | publisher=[[ZDNet]]| title=Script kiddies: The Net's cybergangs| accessdate=2007-04-24}}</ref> The term is generally considered to be a pejorative.

==Characteristics==
In a [[Carnegie Mellon]] report prepared for the [[U.S. Department of Defense]] in 2005, script kiddies are defined as <blockquote>"The more immature but unfortunately often just as dangerous exploiter of security lapses on the Internet. The typical script kiddy uses existing and frequently well known and easy-to-find techniques and programs or scripts to search for and exploit weaknesses in other computers on the Internet—often randomly and with little regard or perhaps even understanding of the potentially harmful consequences.<ref>{{cite web|author=Mead, Nancy R.; Hough, Eric D.; Stehney, Theodore R. III |date=May 16, 2006 |url=http://www.cert.org/archive/pdf/05tr009.pdf |title=Security Quality Requirements Engineering (SQUARE) Methodology CMU/SEI-2005-TR-009 |format=PDF |work=Carnegie Mellon University, DOD |publisher=CERT.org}}</ref></blockquote>

Script kiddies have at their disposal a large number of effective, easily downloadable malicious programs capable of breaching computers and networks.<ref name="zdnet"/> Such programs have included remote denial-of-service [[WinNuke]],<ref>{{cite book |author=Klevinsky, T. J. ; Laliberte, Scott; Gupta, Ajay |year=2002 |url=http://books.google.com/books?id=31Kis_vaadwC&pg=PA409&lpg=PA409#v=onepage&q&f=false |title=Hack I.T.: security through penetration testing| publisher=[[Addison-Wesley]] |isbn=978-0-201-71956-7}}</ref> [[Trojan horse (computing)|trojan]]s [[Back Orifice]], [[NetBus]], [[Sub7]],<ref>{{cite web|author=Granneman, Scott |date=January 28, 2004 | url=http://www.theregister.co.uk/2004/01/28/a_visit_from_the_fbi/ |title=A Visit from the FBI - We come in peace |publisher=[[The Register]]}}</ref> and [[ProRat]], vulnerability scanner/injector kit [[Metasploit]],<ref>{{cite web|author=Biancuzzi, Federico |date=March 27, 2007 |url=http://www.securityfocus.com/columnists/439 |title=Metasploit 3.0 day |publisher=SecurityFocus.com}}</ref> and often software intended for legitimate security auditing.<ref name="Rodriguez">{{Cite web |url=https://www.htbridge.com/publication/the_growing_hacking_threat_to_websites.pdf |title=The Growing Hacking Threat to Websites: An Ongoing Commitment to Web Application Security |last1=Rodriguez |first1=Chris |last2=Martinez |first2=Richard |publisher=Frost & Sullivan |date=September 2, 2012 |accessdate=November 30, 2013}}</ref> A survey of college students in 2010, supported by UK's [[Association of Chief Police Officers]], indicated a high level of interest in beginning hacking: "23% of 'uni' students have hacked into IT systems [...] 32% thought hacking was 'cool' [...] 28% considered it to be easy."<ref>{{cite web|author=Zax, David|date=September 22, 2010|url=http://www.fastcompany.com/1690541/it-security-firm-fear-students|title=IT Security Firm: Fear Students|publisher=Fast Company}}</ref>

Script kiddies vandalize websites both for the thrill of it and to increase their reputation among their peers.<ref name="zdnet"/> Some more malicious script kiddies have used virus toolkits to create and propagate the [[Anna Kournikova (computer virus)|Anna Kournikova]] and [[ILOVEYOU|Love Bug]] viruses.<ref name="Reg01">{{cite web|author=Leyden, John|date=February 21, 2001|url=http://www.theregister.co.uk/2001/02/21/virus_toolkits_are_skiddie_menace/|title=Virus toolkits are s'kiddie menace |publisher=[[The Register]]}}</ref>
Script kiddies lack, or are only developing, programming skills sufficient to understand the effects and side effects of their actions. As a result, they leave significant traces which lead to their detection, or directly attack companies which have detection and countermeasures already in place, or in recent cases, leave automatic crash reporting turned on.<ref>{{cite web|author=Taylor, Josh |date=August 26, 2010|url=http://www.zdnet.com.au/hackers-accidentally-give-microsoft-their-code-339305548.htm?omnRef=NULL |title=Hackers accidentally give Microsoft their code|publisher=ZDNet.com.au}}</ref><ref>{{cite web|author=Ms. Smith|date=August 28, 2010|url=http://www.networkworld.com/community/node/65571 |title=Error Reporting Oops: Microsoft, Meter Maids and Malicious Code|work=Privacy and Security Fanatic|publisher=[[Network World]]}}</ref>

==References==
{{reflist}}

==See also==

==External links==

[[Category:Draft]]