After the damage caused by CodeRed and its colleagues, a new question arose in the security community. The question of whether or not to disclose all exploit data to the public was scrutinized more than ever. Many believe that if security hackers were to not disclose the information publicly, that nothing like CodeRed could have ever happened. If you choose not to disclose information, consumer power is lost. What is to stop corporations from not releasing patches or even announcing that there is a hole in their software. Full disclosure keeps companies honest, increases product security, and increases consumer buying power. While many see full disclosure as handing malicious hackers sacred knowledge, full disclosure also increases responsibility of network administrators. Many administrators have their job automated to the point where their job looks almost obsolete. When it's well known that hackers possess the knowledge to break into your computer system, it forces network administrators to keep up with the latest security patches, increasing overall security and allowing them to actually work for their paycheck.

Security Storm CodeRed Tools

CodeRed II Removal Version 1.0 - CodeRed II Removal detects, patches, and removes CodeRed II from Windows NT/2000/XP machines quickly and easily. The utility detects and removes CodeRed II's trojan files and resets altered registry keys.

• Screen Shot
• CodeRed Removal (206kb)
• CodeRed Removal with NT4 MS01-033 Security Patch (436kb)
• CodeRed Removal with Windows 2000 MS01-033 Security Patch (430kb)

CodeRed Resources

• Microsoft Security Bulletin MS01-033
• eEye CodeRed Scanner
• eEye Retina CodeRed Scanner
• CodeRed Source Code
• CodeRed II eEye Analysis
• SecurityFocus CodeRed II Analysis (PDF)
• SecurityFocus CodeRed II Alert (PDF)