Honeypots Mode:
(Page 12 of 109)  < Prev  7 8 9 10 11 12 13 14 15 16 17  Next >
Honeywall CDROM Roadmap 2006-11-03
Lance Spitzner (lance honeynet org) (1 replies)
Folks,

For the past couple of weeks several people have asked some good
questions about where the Honeynet Project's research is headed.
Below is a roadmap of one of our technologies, the Honeywall CDROM.
This should hopefully give you a better idea of where we are going,
and what to expe

[ more ]  [ reply ]
Re: Honeywall CDROM Roadmap 2006-11-04
NAHieu (nahieu gmail com)
Re: Port 57572 2006-10-26
stonfi linuxmail org (1 replies)

> ----- Original Message -----
> From: comandur <comandur (at) comandur (dot) com [email concealed]>
> To: honeypots (at) securityfocus (dot) com [email concealed]
> Subject: Port 57572
> Date: Wed, 25 Oct 2006 17:56:36 -0400
>
>
> Hello All,
>
> For the last couple weeks I have seen thousands of inbound connection
> attempts from all over the net to p

[ more ]  [ reply ]
RE: Port 57572 2006-10-26
comandur (comandur comandur com)
MODERATOR: Returned post for honeypots (at) securityfocus (dot) com [email concealed] 2006-10-26
Lance Spitzner (lance honeynet org)
Folks,

I'm concerned some of your of posts to the honeypots maillist may
have been lost in the process. As moderator, when I recieve a
posting I usually approve it. In the rare cases I do not I will
always reply with the reason why. If you post to the honeypots
maillist, and do not see i

[ more ]  [ reply ]
Port 57572 2006-10-25
comandur (comandur comandur com)
Hello All,

For the last couple weeks I have seen thousands of inbound connection
attempts from all over the net to port 57572 (TCP and UDP)

Anyone else seeing these? Any idea what is going on?

Thanks

[ more ]  [ reply ]
Research 2006-10-25
Christos Vasilakis (cvasilak gmail com)
Hi there,

I read with great interest the paper "Towards a Third Generation Data
Capture Architecture for Honeynets" by Edward Balas and Camilo Viecco.
Two years ago I proposed an MSc thesis with the title "Effectiveness
of an Integrated approach for the analysis of Honeynet data". Some
people may r

[ more ]  [ reply ]
Walleye don't recognize sebek packet 2006-10-19
mng3 (at) libero (dot) it [email concealed] (mng3 libero it)
Hi,
I have a little problem with Walleye (I use roo-1.0.hw-189 with one Windows honeypot).
In fact, Walleye show *only one* Sebek record when the honeypot starts.

So, Walleye don't show the other sebek packets: they are considered as they were normal traffic.
I.e., the Sebek packet's source IP is t

[ more ]  [ reply ]
EEye to build world's largest honeypot 2006-10-19
Mark Ryan del Moral Talabis (talabis gmail com) (1 replies)
Enterprise security vendor eEye is preparing to unveil a free version
of its Blink security software for consumers.

Blink offers a single application that protects against buffer
overflow and phishing attacks. It also offers intrusion prevention,
application white-listing and location-specific secu

[ more ]  [ reply ]
Re: EEye to build world's largest honeypot 2006-10-19
Landon Lewis (lewis digitalbond com)
CWSandbox & PacSec Dojo 2006-10-18
Thorsten Holz (thorsten holz gmail com)
Hi everyone,

two news from me:

* We have now a web-frontend to CWSandbox, a tool for automated
behaviour analysis of malware. Just submit suspicious binaries to
http://www.cwsandbox.org/ and a couple of minutes later you receive an
analysis report in your inbox. A sample report is for example
avai

[ more ]  [ reply ]
Take My Wallet, Please 2006-10-18
Lance Spitzner (lance honeynet org)
I found this to be very interesting. November's issue of Kiplinger's
has a one page interview with a Mr. Bob Arno of Las Vegas. While his
job has nothing to do with honeypots or information security, there
are some neat similarities. He specializes in learning about
picketpockets and then

[ more ]  [ reply ]
RE: Problem with Sebek client 3.0.4 and 3.0.3 for Windows 2006-10-15
mng3 (at) libero (dot) it [email concealed] (mng3 libero it)
I tried both to execute commands with the console and establish a connection with telnet from another machine towards port 80 of the honeypot (in the honeypot there is IIS 5.1).

Regards.

Sam

(Sorry if you received more than 1 copy of this message)

> How are you causing the windows machine to gen

[ more ]  [ reply ]
Problem with Sebek client 3.0.4 and 3.0.3 for Windows 2006-10-13
mng3 (at) libero (dot) it [email concealed] (mng3 libero it) (1 replies)
Hi all,
I have a problem with Sebek client for Windows version 3.0.4 and 3.0.3.
I use Roo hw1.0-189 and the (virtual) honeypot is WinXP Pro sp2, executed with VMware Player (Host OS: WinXP home sp2).

I installed and configured Sebek client on my honeypot, but when I restarted it, the machine shown

[ more ]  [ reply ]
RE: Problem with Sebek client 3.0.4 and 3.0.3 for Windows 2006-10-14
Michael A. Davis (mike datanerds net)
Sebek 3.2.0c linux 2.4.18 2006-10-13
Gufo (gaudente gmail com)
Hi all,
I'm facing some problems installing sebek 3.2.0c on an old slackware 8.1
with kernel 2.4.18.

The first glitch is when sbk_install.sh tries to recognise if the
variable MAGIC_VAL have a value different from 0.
To make it stop complaining I simply deleted this check ;)

Sebek compiles correct

[ more ]  [ reply ]
Is Sebek doing its Job! 2006-10-09
obichbiche googlemail com
Hi All,

I?ve attacked my own virtual honeypot running a windows XP box (In VMware workstation5.5), I took a word document of 38KB from there, when I check in walleye I can see that Sebek recorded the intrusion and even the size of the packet which is what I would expect, but the thing is when I try

[ more ]  [ reply ]
RE: Need help with research topics 2006-10-04
rick livingstoncadservice com (2 replies)

Try contributing to the list first before you ask for assistance. If you cant do this on your own, needless to say you waited 5 days before the deadline, then you don't deserve a PhD.

> This is my first posting.

> This is my first posting. I am a PhD student at Nova and I needed some hel

[ more ]  [ reply ]
RE: Need help with research topics 2006-10-04
yahooguy subroto (subrot0 yahoo com)
Re: Need help with research topics 2006-10-04
Colin Copley (colin 75 btinternet com)
Need help with research topics 2006-10-03
graceandglory13 sbcglobal net
Hello,
This is my first posting. I am a PhD student at Nova and I needed some help finding new research topics to write about in the areas of Computer Forensics, Network Security, Information Security etc. I am new to this school and I haven't done much research before. My problem is that to m

[ more ]  [ reply ]
Re: Doubt regarding Honeywall 2006-10-03
Earl (esammons hush com)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

What you are seeing is normal for roo-1.x. We are working on the
next generation Honeywall that will hopefully offer options to do
more selective data capture (and other cool stuff). i.e. Only
perform data capture to/from Honeypots (or even selected h

[ more ]  [ reply ]
Doubt regarding Honeywall 2006-10-03
mng3 (at) libero (dot) it [email concealed] (mng3 libero it) (1 replies)
Hi all,
I'm configuring a little honeynet: the Honeywall and one honeypot running WinXP Pro SP2.
I have deployed the honeynet in my LAN, so the honeypot is in the same subnet of my production system.

My doubt is the following: the Walleye web interface, in the "Top 10 Honeypots" section show not on

[ more ]  [ reply ]
´ð¸´: Doubt regarding Honeywall 2006-10-03
lobatt (lobatt sohu com)
Unified Data Analysis Framework (UDAF) 2006-09-30
Christos Vasilakis (cvasilak gmail com) (1 replies)
Hello there,

as I understand from the honeynet site, the organization is developing a base
framework so that analysis tools can be developed. Is there any paper
describing the UDAF framework and how it will contribute in the area of event
correlation between the different data sources?

Regards,

[ more ]  [ reply ]
Re: Unified Data Analysis Framework (UDAF) 2006-10-02
Yannis Corovesis (ycor epmhs gr)
(Page 12 of 109)  < Prev  7 8 9 10 11 12 13 14 15 16 17  Next >


 

Privacy Statement
Copyright 2010, SecurityFocus