Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Pen-Test
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: What do you guys think?

from [Jamie Riden] Network Security [Permanent Link]
Subject: Re: What do you guys think?
Date: Thu, 13 Mar 2008 10:26:09 +0000 
On 13 Mar 2008 05:30:57 -0000, Yousif@vapt-sec.com <Yousif@vapt-sec.com> wrote:

Alright, well I've come up with a different method to trap attackers. I want 
some people to pour out their thoughts, leave some comments, open some 
discussion, and just give me feed back on this idea, and how it can 
implemented better than I had initially set it out as. You can find the post 
at my blog on www.yousifyalda.blogspot.com , thanks in advance!


I think you'd do better asking on the honeypots mailing list -
although you might get a better response if you removed the bit about
honeypots being overrated first :)

Anyway, the idea of putting realistic/misleading/tempting data on
honeypots is not exactly new. I think Cheswick et al did it in "An
Evening with Berferd" ( http://all.net/books/berferd/berferd.html )
and possibly Clifford Stoll in the Cuckoo's Egg. Also, have a look at
'honeytokens', e.g. http://www.securityfocus.com/infocus/1713

cheers,
 Jamie
-- 
Jamie Riden / jamesr@europe.com / jamie@honeynet.org.uk
UK Honeynet Project: http://www.ukhoneynet.org/

------------------------------------------------------------------------
This list is sponsored by: Cenzic

Need to secure your web apps NOW?
Cenzic finds more, "real" vulnerabilities fast.
Click to try it, buy it or download a solution FREE today!

http://www.cenzic.com/downloads
------------------------------------------------------------------------
[More messages with this same subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  MMS for hackers, Gleb Paharenko
Next by Date:  Re: Program to populate forms, Sam Rakowski
Previous by Thread:  What do you guys think?, Yousif
Next by Thread:  RE: What do you guys think?, Nick Vaernhoej
Indexes:  [Date] [Thread] [Top] [All Lists]