Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Security-Basics
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

RE: Honeypot Server

from [Brett Kennedy] Network Security [Permanent Link]
Subject: RE: Honeypot Server
Date: Thu, 17 Jan 2008 13:12:09 -0500 
Depending on the purpose of the honeypot, most likey you want an
environment as similar as possible to the real environment you wish to
simulate with the honeypot. This would let you study the attacks on the
honeypot in the most meaningful way. You'd also want software then to
monitor tcp traffic, changes to the local drive and so on. These could
be standard software used for these purposes, such as mod_security,
tripwire etc., and not necessarily honeypot-specific.
Brett


-----Original Message-----
From: listbounce@securityfocus.com [mailto:listbounce@securityfocus.com]
On Behalf Of Gleb Paharenko
Sent: January 17, 2008 12:48 PM
To: m.farid.shawara@gmail.com
Cc: security-basics@securityfocus.com
Subject: Re: Honeypot Server

Dear Farid.

Though I have not practical experience with honeypots yet. I suggest you
a good resource:
 honeynet.org

Also you should determine the needs of your honeypot (just get
attempts to connect, or research what malicious atacker is doing), and
select an appropriated solution, it can be a whole honeypot
infrastructure. Honeynet claims that their live cd is fine:
  https://projects.honeynet.org/honeywall/

2008/1/17, m.farid.shawara@gmail.com <m.farid.shawara@gmail.com>:


Dear All :

Can you advise what is the best honeypot server available
Open-source or commercial - it doesn't matter as long as it will be

easy to

administrate and easy to monitor and alerted ...

Mohamed Farid ...






-- 
Best regards.
Gleb Pakharenko.
http://gpaharenko.livejournal.com

--
Click the link below to report this message as spam to Caseware E-Mail 
Security Server ESVA. 
http://esva1.caseware.com/cgi-bin/learn-msg.cgi?id=4B7621ED254.49828
[More messages with this same subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: VPN Group - Least Privaledges, krymson
Next by Date:  RE: Analyzing Suspicious Attachment, Brett Kennedy
Previous by Thread:  Re: Honeypot Server, Gleb Paharenko
Next by Thread:  RE: Honeypot Server, Timmothy Lester
Indexes:  [Date] [Thread] [Top] [All Lists]