Robert Lemos, SecurityFocus 2005-08-08
Microsoft 's experimental Honeymonkey project has found almost 750 Web pages that attempt to load malicious code onto visitors' computers and detected an attack using a vulnerability that had not been publicly disclosed, the software giant said in a paper released this month.
Colapse all |
Post comment
Microsoft's "monkeys" find first zero-day exploit
2005-08-09
DCrawford (2 replies)
DCrawford (2 replies)
Re: Microsoft's "monkeys" find first zero-day exploit
2005-08-12
Roger
Roger
If they published the list, all it would achieve is those sites would move elsewhere -- plus the honeymonkeys would no longer work, and would need to be set up again with a new list (secret this time).
The only winners from publishing the list would be the bad guys operating the malicious sites (...
[ more ] [ reply ]
The only winners from publishing the list would be the bad guys operating the malicious sites (...
[ more ] [ reply ]
Microsoft's "monkeys" find first zero-day exploit
2005-08-10
Spetz (5 replies)
Spetz (5 replies)
Instead of telling that they have found these
malicious websites, Microsoft should inform the
public so the user can block their IP's or add
the URL to the restricted zone. Typical Microsoft
warning people for dangers but not doing anything
useful with it. More reason to use Firefox or any
oth...
[ more ] [ reply ]
malicious websites, Microsoft should inform the
public so the user can block their IP's or add
the URL to the restricted zone. Typical Microsoft
warning people for dangers but not doing anything
useful with it. More reason to use Firefox or any
oth...
[ more ] [ reply ]
Re: Microsoft's "monkeys" find first zero-day exploit
2005-08-10
Monkeygirl
Monkeygirl
So if they publish this list of questionable sites, what do you think the folks with the sites will do? start up new sites with the same garbage or remove the malicious code? If you are watching a criminal with the intent of catching them in the act, do you warn the public first, to beware of them ...
[ more ] [ reply ]
[ more ] [ reply ]
Re: Microsoft's "monkeys" find first zero-day exploit
2005-08-12
Kevin
Kevin
Telling users what the sites are is the worst thing they can do. If users block those sites, then the information will just appear somewhere else. The nature of the internet makes anything like that very hard to contain. But by keeping it secret, they can monitor it regularly.
The point of this...
[ more ] [ reply ]
The point of this...
[ more ] [ reply ]
It would be nice to have seen mention of Kathy Wang's honeyclient research as well
2005-08-12
grey
grey
While it's great to see this technique being applied to useful purpose by Microsoft, it should also be noted that Kathy Wang was talking on honeyclients (which as a term makes more sense) for a while already. She even presented some publically available tools at REcon back in June.
http://www.sy...
[ more ] [ reply ]
http://www.sy...
[ more ] [ reply ]
Microsoft's "monkeys" find first zero-day exploit ridicolous
2005-08-13
MSIE IV (1 replies)
MSIE IV (1 replies)
This is ridicolous ! Microsoft has all the Sources of their products and conduct "Blackbox - Tests"
???!!!!
Somebodyelse
...
[ more ] [ reply ]
???!!!!
Somebodyelse
...
[ more ] [ reply ]
Re: Microsoft's "monkeys" find first zero-day exploit ridicolous
2005-08-14
MonkeyMan (2 replies)
MonkeyMan (2 replies)
I think you are missing the point, by using honeymonkeys with differing vulnerability levels MS has just proactively located websites that are actively trying to exploit those vulnerabilities. I think this is brilliant. It will be even more brilliant if a) it helps shut down some bad sites b) helps ...
[ more ] [ reply ]
[ more ] [ reply ]
Re: Re: Microsoft's "monkeys" find first zero-day exploit ridicolous
2005-08-17
Anonymous
Anonymous
Yes, this is a very good approach. Having the source to the products does not mean the author knows all the flaws or where the next expliot thrust will occur. This project is in the spirit of the unix crashme program (http://people.delphiforums.com/gjc/crashme.html) which exposed many user-mode ve...
[ more ] [ reply ]
[ more ] [ reply ]
Re: Re: Microsoft's "monkeys" find first zero-day exploit ridicolous
2005-08-21
Anonymous (2 replies)
Anonymous (2 replies)
This all boils down to the fact that M$ Corp cxant code to save there miserable lives THEY OWN all therr source code THEY could IF THEY WANTED TO solve like 99% of there problems BEFORE getting you to pay them for testing there products and then moanig when there products frell things up due to THER...
[ more ] [ reply ]
[ more ] [ reply ]
Re: Re: Re: Microsoft's "monkeys" find first zero-day exploit ridicolous
2006-09-11
Anonymous
Anonymous
You obviously don't know anything about computers. I have been a developer for over 20 years. I hate Microsoft as much as the next guy, but I have to say that many of the vulnerabilities are not necessarily bugs in their code. Often times, vulnerabilities are good intentions gone bad. For exampl...
[ more ] [ reply ]
[ more ] [ reply ]
Microsoft's "monkeys" find first zero-day exploit
2008-03-27
Anonymous
Anonymous
Black Hats live for these senarios...Remember that a true cracker is himself an idealogist; always have a completely 'rationale' (by their own sight) for doing what they do....for some its politics, money, power, challenge, religion, etc...With regards to MS struggles - in my country a copy of windo...
[ more ] [ reply ]
[ more ] [ reply ]
[ more ] [ reply ]