Jump to content

Script kiddie

From Wikipedia, the free encyclopedia
This is an old revision of this page, as edited by Muniisann (talk | contribs) at 21:52, 20 June 2023 (added an example of what a skid does). The present address (URL) is a permanent link to this revision, which may differ significantly from the current revision.
Part of a series on
Computer hacking
History
Hacker culture and ethic
Conferences
Computer crime
Hacking tools
Practice sites
Malware
Computer security
Groups
Publications

A script kiddie, skiddie, kiddie, or skid is an unskilled individual who uses scripts or programs developed by others, primarily for malicious purposes.

Characteristics

In a Carnegie Mellon report prepared for the U.K. Department of Defense in 2000, script kiddies are defined as

The more immature but unfortunately often just as dangerous exploiter of security lapses on the Internet. The typical script kiddy uses existing and frequently well known and easy-to-find techniques and programs or scripts to search for and exploit weaknesses in other computers on the Internet—often randomly and with little regard or perhaps even understanding of the potentially harmful consequences.[1]

Script kiddies typically have at least one or more effective and easily downloadable programs capable of breaching computers and networks.[2]

Script kiddies vandalize websites both for the thrill of it and to increase their reputation among their peers.[2] Some more malicious script kiddies have used virus toolkits to create and propagate the Anna Kournikova and Love Bug viruses.[3] Script kiddies lack, or are only developing, programming skills sufficient to understand the effects and side effects of their actions. As a result, they leave significant traces which lead to their detection, or directly attack companies which have detection and countermeasures already in place, or in some cases, leave automatic crash reporting turned on.[4][5]

A prime example of a modern day script kiddie is MuniTM, who, despite not knowing how to code or perform exploits, managed to gain access to "Vxpe Private", a software that is well known for its capabilities in game hacking. He also managed to get connections with actual malicious hackers who, unlike a script kiddie, can make exploits for themselves. He, because of these tools, was able to perform exploits on the Easygg platform and even earn money from doing so. As of now his business still exists.

See also

References

  1. ^ Mead, Nancy R.; Hough, Eric; Stehney, Theodore R. (31 October 2005). Security Quality Requirements Engineering (SQUARE) Methodology (Report). Carnegie Mellon University. doi:10.1184/R1/6583673.v1.
  2. ^ a b Lemos, Robert (July 12, 2000). "Script kiddies: The Net's cybergangs". ZDNet. Retrieved 2007-04-24.
  3. ^ Leyden, John (February 21, 2001). "Virus toolkits are s'kiddie menace". The Register.
  4. ^ Taylor, Josh (August 26, 2010). "Hackers accidentally give Microsoft their code". ZDNet.com.au. Archived from the original on January 20, 2012.
  5. ^ Ms. Smith (August 28, 2010). "Error Reporting Oops: Microsoft, Meter Maids and Malicious Code". Privacy and Security Fanatic. Network World.

Further reading

Retrieved from "https://en.wikipedia.org/w/index.php?title=Script_kiddie&oldid=1161136985"