Definition

botnet topology

TechTarget Contributor

By

TechTarget Contributor

A botnet topology is the network structure by which botnet interconnections are organized.

Botnet topologies may be either centralized around a command and control server (C&C server) or decentralized using peer-to-peer (P2P) communication.

Typical botnet topologies include:

Star, in which the bots are organised around a central C&C server.
Multi-server, in which there are multiple C&C servers for redundancy in case one is disabled.
Hierarchical, in which multiple C&C servers are organized into tiered groups to increase reliability. The hierarchical structure also makes it possible to parcel out groups of bots for rental to different clients, and reduces the number of machines that could be discoverable from the detection of a single group or bot.
Random, in which there is no C&C server at all and bots communicate peer-to-peer (P2P botnet), with more advanced botnets using encryption.

As a resiliency measure, some non-random botnets are designed to reorganize as a P2P botnet in the event that a C&C server is taken down.

This was last updated in May 2014

Continue Reading About botnet topology

Detecting and preventing botnets

An introduction to botnets

SearchCompliance

pure risk
Pure risk refers to risks that are beyond human control and result in a loss or no loss with no possibility of financial gain.
risk reporting
Risk reporting is a method of identifying risks tied to or potentially impacting an organization's business processes.
risk avoidance
Risk avoidance is the elimination of hazards, activities and exposures that can negatively affect an organization and its assets.

SearchSecurity

script kiddie
Script kiddie is a derogative term that computer hackers coined to refer to immature, but often just as dangerous, exploiters of ...
cipher
In cryptography, a cipher is an algorithm for encrypting and decrypting data.
What is risk analysis?
Risk analysis is the process of identifying and analyzing potential issues that could negatively impact key business initiatives ...

SearchHealthIT

protected health information (PHI) or personal health information
Protected health information (PHI), also referred to as personal health information, is the demographic information, medical ...
digital health (digital healthcare)
Digital health, or digital healthcare, is a broad, multidisciplinary concept that includes concepts from an intersection between ...
HIPAA (Health Insurance Portability and Accountability Act)
HIPAA (Health Insurance Portability and Accountability Act) is United States legislation that provides data privacy and security ...

SearchDisasterRecovery

What is risk mitigation?
Risk mitigation is a strategy to prepare for and lessen the effects of threats faced by a business.
fault-tolerant
Fault-tolerant technology is a capability of a computer system, electronic system or network to deliver uninterrupted service, ...
synchronous replication
Synchronous replication is the process of copying data over a storage area network, local area network or wide area network so ...

SearchStorage

gigabyte (GB)
A gigabyte (GB) -- pronounced with two hard Gs -- is a unit of data storage capacity that is roughly equivalent to 1 billion ...
MRAM (magnetoresistive random access memory)
MRAM (magnetoresistive random access memory) is a method of storing data bits using magnetic states instead of the electrical ...
storage volume
A storage volume is an identifiable unit of data storage. It can be a removable hard disk, but it does not have to be a unit that...

Close