Nmap Security Scanner
*Intro
*Ref Guide
*Install Guide
*Download
*Changelog
*Book
*Docs
Security Lists
*Nmap Hackers
*Nmap Dev
*Bugtraq
*Full Disclosure
*Pen Test
*Basics
*More
Security Tools
*Pass crackers
*Sniffers
*Vuln Scanners
*Web scanners
*Wireless
*Exploitation
*Packet crafters
*More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:
edgeos



Honeypots: Re: How to monitor events in Windows?

Re: How to monitor events in Windows?

From: Parvinder Bhasin <parvinder.bhasin_at_gmail.com>
Date: Fri, 02 Nov 2007 11:59:50 -0700

A good free low interaction windows based honeypot would be "HONEYBOT".
http://www.atomicsoftwaresolutions.com/honeybot.php

Regarding sebek, make sure you are installing the sebek 3.0.4.
I am sure you know that eventviewer is OK place to check , plus some
sysinternal tools are great too.

Hope this helps.

Cheers!
-Parvinder Bhasin

mybayern1974_at_sjtu.edu.cn wrote:
> I want to know everything happend in my Windows box, including both
> local events and network events. Is there such a tool? I know sebek is a
> good choise, but unfortunately the sebek client is unable to work in
> windows box located in Virtual Machine like VMware. (It will cause "blue
> screen" when rebooting after finishing configuration.) Furthermore, I
> know another choice named "spector", but it's a commercial one.
>
> So, is there any free one I can get?
>
> Thanks in advance!
>
>
>
Received on Nov 02 2007

[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]
edgeos