Honeypots
Open Source Honeypots, Part Two: Deploying Honeyd in the Wild
This is the second part of a three-part series looking at Honeyd, an open source solution that is excellent for detecting attacks and unauthorized activity. In the first paper, we ...
Written by: Lance Spitzner, Tracking-Hackers.com and added on June 4, 2011Open Source Honeypots: Learning with Honeyd
A honeypot is a security resource whose value lies in being probed, attacked, or compromised. The key point with this definition is honeypots are not limited to solving only one ...
Written by: Lance Spitzner, www.tracking-hackers.com and added on March 22, 2011Problems and Challenges with Honeypots
For the past 18 months we have seen a tremendous growth in honeypot technologies. Everything from OpenSource solutions such as Honeyd and Honeynets, to commercial offerings such as KFSensor are ...
Written by: Lance Spitzner and added on Jan. 27, 2011Specter: a Commercial Honeypot Solution for Windows
This is the third installment in an ongoing series of articles looking at honeypots. In the first two papers, we discussed the OpenSource honeypot Honeyd, how it works, and a ...
Written by: Lance Spitzner and added on June 24, 2011The Motives and Psychology of the Black-hat Community
This information was obtained through the use of a honeynet. A honeynet is a network of various honeypots, designed to be compromised by the black-hat community. While some honeypots are ...
Written by: The Honeynet Project and added on April 28, 2011Know Your Enemy: Honeynets in Universities
The deployment of a honeynet on a large enterprise network such as that found on a major college or university can offer numerous benefits to an institution. Based on our ...
Written by: John Levine and added on Jan. 23, 2011Honeypot + Honeypot = Honeynet
What do you get when you place two (or more) honeypots into a network? The answer is a honeynet. The idea of creating a network of lures was the seminal ...
Written by: Eric Carr and added on Jan. 18, 2011Incident Analysis of a Compromised RedHat Linux 6.2 Honeypot
My previous three honeypots had all been RedHat 6.2 default server installs and had all been hacked using exploits in rpc.statd or wuftpd. RedHat 6.2 seems to be a reasonable ...
Written by: Stephen Holcroft and added on Jan. 17, 2011Design Of A Default Redhat Server 6.2 Honeypot
The following paper is a description of how I have designed and implemented a honeypot system. The paper describes how the honeypot is used to capture data in layers using ...
Written by: Stephen Holcroft and added on Jan. 20, 2011Honeypotting with VMware - basics
VMware is essentially a set of software products, the workstation version installs onto Windows or Linux and allows you to run numerous Intel based operating systems on top of it. ...
Written by: Kurt Seifried and added on June 11, 2011