Honeypots Mode:
(Page 8 of 109)  < Prev  3 4 5 6 7 8 9 10 11 12 13  Next >
Walleye Web interface, no data 2007-09-10
Walid Aweiwi (walid bisan com) (1 replies)
Hi All,

Lately I installed roo-1.2.hw-1 and it's up and running for the first few hours walleye
was working fine but later on exactly after 9 hours I couldn't see any data in the Data
Analysis tab "all periods have 0 Cons and 0 IDS", If I will restart the server it's
working again for few hours and

[ more ]  [ reply ]
Re: Walleye Web interface, no data 2007-09-10
Thorsten Holz (thorsten holz gmail com)
Honeyd initial configuration 2007-09-06
paavan shah gmail com
hello all!!

I am a newbie to honeypots.To learn honeypots I have installed honeyd 1.5c and arpd 0.2 on Fedora Core 4 VM.All the installation has been done successfully.

Now to test the honeyd installation I do following as per the paper "simulating networks with honeyd"

My honeyd ip is 10.0

[ more ]  [ reply ]
Release of Capture BAT 2.0 2007-09-03
Christian Seifert gmail com
The New Zealand Honeynet Project and Victoria University of Wellington are excited to announce the release of a new version of our behavioral analysis tool Capture BAT: version 2.0. There are many new exciting features in this release:

* added installer/uninstaller

* added ability to capture netwo

[ more ]  [ reply ]
Most cost-effective approach to hosting a honeynet. 2007-08-29
Christopher (vooduhal gmail com)
I apologize if this is a repost.

I'm considering moving from the 3-5 honeypots that I currently have to
purchasing a block of IPs.
Since I have no academic affiliation and am doing this purely as a
hobby, my funding is limited to my own wallet so purchasing the most
address space I can get is impor

[ more ]  [ reply ]
Announcing new KYE paper: Malicious Web Servers 2007-08-14
christian seifert gmail com
The Honeynet Project & Research Alliance are excited to announce the release of a new paper in our Know Your Enemy series, ?KYE: Malicious Web Servers?. In this paper, we take an in-depth look at malicious web servers that attack web browsers, and we evaluate several defensive strategies that can be

[ more ]  [ reply ]
HoneyMole 2.0 RC6 2007-08-13
Pedro Inacio (pedro inacio honeynet org pt)
Hello,

version RC6 is now available for testing.

You can download it under the following URL:
http://www.honeynet.org.pt/index.php/HoneyMole

This RC version presents some bug fixes and lot of code cleanings.
I'm planning this version to be the latest Release Candidate before
the final 2.0 relea

[ more ]  [ reply ]
Honeyd for Windows 1.5c 2007-08-09
Jesper Jurcenoks (jesper jurcenoks netvigilance com) (1 replies)
Hi All on this list.

netVigilance has ported Honeyd 1.5c to Windows, and released it for free under the name WinHoneyd.

The complete source and the compiled executable are available for free on our web-site.

If you want the compiled executable then you will need to fill out a form, donâ??t

[ more ]  [ reply ]
RE: Honeyd for Windows 1.5c 2007-08-10
Michael A. Davis (mike datanerds net)
Re: Roo 1.2 password changing 2007-08-08
Earl (esammons hush com)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Once again I am reminded that I should stick to OS level issues ;P

Earl

On Wed, 08 Aug 2007 12:45:24 -0400 Lucretia <lucretias (at) shaw (dot) ca [email concealed]>
wrote:
>On Thu, 2007-08-02 at 12:19 -0400, Earl wrote:
>> -----BEGIN PGP SIGNED MESSAGE-----
>> Hash: SHA1
>>
>> T

[ more ]  [ reply ]
BotHunter 2007-08-02
Vinod Yegneswaran (yegnev yahoo com)
Hi All:

I am happy to announce that SRI has released a
dialog-correlation engine for Snort based bot
detection. We are also sharing some data from our
malware analysis honeynet.

More details can be found below. We look forward to
any comments!

http://www.cyber-ta.org/BotHunter/

cheers
vino

[ more ]  [ reply ]
Re: Roo 1.2 password changing 2007-08-02
Earl (esammons hush com) (1 replies)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

The db schema that holds the walleye passwd is char/16. We felt
that given the "mix" requirements this would usually be a
sufficient length.

I'm not sure if MySQL gives you the full 16 or if there is some
sort of "end-of-string" char that ends up yiel

[ more ]  [ reply ]
Re: Roo 1.2 password changing 2007-08-08
Lucretia (lucretias shaw ca)
Virtual Honeypots book available 2007-08-01
Niels Provos (provos citi umich edu)
Hi everyone,

please, apologize the advertising, but I am very happy to announce that the
"Virtual Honeypots" book that Thorsten Holz and I have been working on for the
last two years is finally available. The book deals with high- and
low-interaction honeypots and focuses on Honeyd, malware colle

[ more ]  [ reply ]
Roo 1.2 password changing 2007-07-31
Lucretia (lucretias shaw ca)
Greetings.

I have used Roo for a couple years now and like the simple package. I
have wiped my 1.1 box for installation of 1.2 which is going fine except
for one problem I cannot figure out.

When I login to walleye for the first time, it takes me to the change
password page. I cannot get past th

[ more ]  [ reply ]
IM and P2P HoneyClients 2007-07-26
Andre Gironda (andre operations net) (1 replies)
With the new problems facing non-IRC botnets in the form of IM and P2P
attack channels, what methods and tools can we use to understand these
problems from the client-side?

SpywareGuide recently blogged about, "Security Attacks On The Rise in
IM and P2P Channels" as seen here:
http://blog.spywaregu

[ more ]  [ reply ]
Re: IM and P2P HoneyClients 2007-07-27
Kathy Wang (knwang synacklabs net)
Announcing new KYE paper: Fast-Flux Service Networks 2007-07-15
Lance Spitzner (lance honeynet org)
The Honeynet Project & Research Alliance are excited to announce the
release of a new paper, "KYE: Fast-Flux Service Networks". This
whitepaper details a growing technique within the criminal community
called fast-flux networks. This is an architecture that builds more
robust networks for

[ more ]  [ reply ]
HoneyMole 2.0 RC5 2007-07-13
Pedro Inacio (pedro inacio honeynet org pt)
Hello,

version RC5 is now available for testing.

You can download it at the following URL:
http://www.honeynet.org.pt/index.php/HoneyMole

This RC version presents some bug fixes and a very useful new
functionality:

- You can now add/delete/change client configuration files without
stopping t

[ more ]  [ reply ]
Wireless research advice 2007-07-10
ours (carter-penley2 iinet net au)
Hi

I'm doing some preliminary research prior to writing my methodology etc for
my post grad research and I'm looking for advice as to what software to use
to collect data about wireless probes / attacks. I'm thinking that a
Honeypot of some sort may be the way to go but any advice would be
grateful

[ more ]  [ reply ]
Honeywall specific List 2007-06-22
Earl (esammons hush com)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

All,

We have a new public mail list for discussion of Use and
Development of the Honeynet Project's Honeywall and related
technology. If you're interested in participating, please join!

All Honeynet lists:
https://public.honeynet.org/mailman/listinfo

[ more ]  [ reply ]
HoneyMole public mailing list 2007-06-21
Pedro Inacio (pedro inacio honeynet org pt)
Hello,

we have a public mailing list for HoneyMole developers and users
discussions.
You can sign it up in the following URL:

https://public.honeynet.org/mailman/listinfo/honeymole

For those that don't know what HoneyMole is, more information can be
obtained here:

http://www.honeynet.org.pt/inde

[ more ]  [ reply ]
Re: Roo new version 1.2? 2007-06-19
Earl (esammons hush com)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

From my last post...

> We're sorting out some hosting/server issue as we speak so we get
a
> mail list going for use/development discussion and a Read-Only
copy
> of the SVN tree. Stay tuned.

Earl

On Tue, 19 Jun 2007 00:40:18 -0400 Hridya Thilak <hr

[ more ]  [ reply ]
Re: Questions about roo new version 1.2? 2007-06-19
Earl (esammons hush com) (1 replies)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

CL,

On Mon, 18 Jun 2007 05:06:15 -0400 carlopmart
<carlopmart (at) gmail (dot) com [email concealed]> wrote:
> I have some questions about using new roo version 1.2:
> - Can I install roo under as a xen guest using fc6/fc7 kernel,
>or roo is it really dependant about this??

I w

[ more ]  [ reply ]
Re: Questions about roo new version 1.2? 2007-06-19
carlopmart (carlopmart gmail com)
Questions about roo new version 1.2? 2007-06-18
carlopmart (carlopmart gmail com) (1 replies)
Hi all,

I have some questions about using new roo version 1.2:

- Can I install roo under as a xen guest using fc6/fc7 kernel, or roo is it
really dependant about this??

- Can I use another rhel based distro as a base system for walleye, snort, etc
packages provided by roo??

I am really

[ more ]  [ reply ]
Roo new version 1.2? 2007-06-19
Hridya Thilak (hridyavt hcl in)
Capture-HPC mailing list announcement 2007-06-16
christian seifert gmail com
The Honeynet Project and Research Alliance are excited to announce the Capture-HPC mailing list.

This mailing list is a public mailing list designed for end users of our client honeypot 'Capture-HPC' (available at http://www.nz-honeynet.org/capture.html). It allows end users to discuss issues ar

[ more ]  [ reply ]
New Honeywall version 1.2 2007-06-15
Earl (esammons hush com)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

The Honeynet Project and Research Alliance are excited to
announce the release of Honeywall 1.2. This new version
addresses a variety of bugs and adds new features, including

o Based on Fedora Core 6
o Newer version of Snort including VRT Ruleset &

[ more ]  [ reply ]
SpyBye 0.3 released 2007-06-10
Niels Provos (provos citi umich edu)
Hello everyone,

I released a new version of SpyBye today that has some interesting new
features. SpyBye 0.3 can be used as a regular web proxy, for regular
web browsing. SpyBye still analyzes all content automatically, but it
happens in the background. Whenever, dangerous content is
encountered,

[ more ]  [ reply ]
(Page 8 of 109)  < Prev  3 4 5 6 7 8 9 10 11 12 13  Next >


 

Privacy Statement
Copyright 2010, SecurityFocus