While the results will be interesting, I don't think it can be
properly classified as a honeypot. Correct me if I'm wrong, but isn't
this a HIPS/HIDS with event correlation and analysis? The users of
the product aren't exactly trying to have a juicy/interesting target
and lure in an attack for early detection and event analysis. This
solution may however share some of the same benefits of a honeypot.
LL
On Oct 19, 2006, at 5:58 AM, Mark Ryan del Moral Talabis wrote:
> Enterprise security vendor eEye is preparing to unveil a free version
> of its Blink security software for consumers.
>
> Blink offers a single application that protects against buffer
> overflow and phishing attacks. It also offers intrusion prevention,
> application white-listing and location-specific security settings.
>
> Consumers will be asked to share data on attacks that target their
> computers. The software will then act as the world's largest honeypot,
> allowing the firm to collect samples of live exploits and malware as
> soon as they become available.
>
> More on:
> http://www.vnunet.com/vnunet/news/2166552/eeye-seeks-build-mega-
> honeypot
>
> --
> Mark Ryan del Moral Talabis
> MS GSEC MCP PTRP
>
> The Philippine Honeynet Project
> http://www.philippinehoneynet.org
>
Received on Oct 19 2006
Intro
