Honeypots (honeypots) Mailing List

Workshop on the Analysis of System Logs (WASL) 2009

Tue, 16 Jun 2009 08:42:33 -0700

Posted by Greg Bronevetsky on Jun 16

Workshop on the Analysis of System Logs (WASL) 2009
http://www.systemloganalysis.com Call for Papers

...

Call for Participation - DIMVA 2009

Tue, 26 May 2009 12:59:20 +0200

Posted by Sebastian Schmerl on May 26

(We apologize if you receive multiple copies of this message.)
----------------------------------------------------------------------
C A L L F O R P A R T I C I P A T I O N
...

SETOP 2009 - Call for Papers, Deadline June 1st

Tue, 26 May 2009 12:07:10 +0200

Posted by Yves Roudier on May 26

[Apologies for multiple copies of this announcement]

CALL FOR PAPERS

...

HoneyD Data Visualization Scripts

Thu, 7 May 2009 17:11:10 -0600

Posted by Joshua Gimer on May 7

I have been doing a little work on updating my HoneyD data
visualization scripts and the web interface to be a little bit more
appealing.

More information at my blog:

http://itsecops.blogspot.com/

EUSecWest 2009 (May2728) London Agenda and PacSec 2009 (Nov 45) Tokyo CFP deadline: June 1 2009

Wed, 6 May 2009 15:24:04 -0700

Posted by Dragos Ruiu on May 6

EUSecWest 2009 Speakers

Efficient UAK Recovery attacks against DECT
- Ralf-Philipp Weinmann, University of Luxembourg
A year in the life of an Adobe Flash security researcher
- Peleus Uhley,...

Call for Papers Hack.lu 2009

Thu, 30 Apr 2009 14:42:46 +0200

Posted by hack.lu 2009 info on Apr 30

Call for Papers Hack.lu 2009
============================

The purpose of the hack.lu convention is to give an open and free
playground where people can discuss the implication of new technologies
in society. hack.lu is a balanced mix convention where technical and
non-technical people can...

RE: Mail Honeypot Thesis

Wed, 22 Apr 2009 22:18:15 +0100

Posted by Ian Bradshaw on Apr 22

I would have thought that botnets are a much greater problem than an open
relay, which is just a couple of pcs / servers and can easily be knocked
offline by an ISP etc.

Also, be careful where you run your relay ... whatever ISP your using will
be none too happy at being blacklisted;...

RE: Mail Honeypot Thesis

Wed, 22 Apr 2009 14:15:14 -0700

Posted by Jesper Jurcenoks on Apr 22

Hi dotcompex.

Make sure you don't actually relay the emails!
Only emulate an open relay, and then accept the emails for relay, without actually relaying them.

If you relay then you become part of the problem, and not part of the solution.

There should be no need to use TCPdump to capture the...

Mail Honeypot Thesis

Wed, 22 Apr 2009 06:54:55 -0700 (PDT)

Posted by dotcompex on Apr 22

I'm doing mail honeypot project for my thesis. Having a little bit problem
in writing good report. I hope u all can comment it so I can edit before
submit it. For the start, I attach my abstract.

Electronic mail or in short can be called email is an important
communication method since...

Re: nepenthes for multiple ip addresses

Sun, 19 Apr 2009 20:56:45 +0200

Posted by Viktor on Apr 19

Thanks for all the answers, i have profited a lot from them! Let me
answer for each reply in one mail.

Kashyap Timmaraju wrote:
> The reason you need arpd is because you have to bind the unused IP
> addresses to a MAC address in this case it will be your MAC
> address(how else can u...

Re: nepenthes for multiple ip addresses

Sun, 19 Apr 2009 17:11:38 +0200

Posted by Gergely RÃvay on Apr 19

Hi,

If there is no address translation in the routing process then you
should have alias interfaces for those IPs which you want to listen
on.

For instance if the 192.168.1.0/24 network is redirected to your
computer then you should use a command like this:

$ for i in `seq 2 254`; do sudo...

Re: nepenthes for multiple ip addresses

Sat, 18 Apr 2009 11:37:29 -0400

Posted by Sushant Sinha on Apr 18

Did you try arpd to get packets to your box?

-sushant.

On Sat, 2009-04-18 at 17:17 +0200, Viktor wrote:
> Hello!
>
> I'm running nepenthes on a debian OS at an universiry network with a fix IP. I managed to get a high number of unused IP addresses from the university network...

nepenthes for multiple ip addresses

Sat, 18 Apr 2009 17:17:32 +0200

Posted by Viktor on Apr 18

Hello!

I'm running nepenthes on a debian OS at an universiry network with a fix IP. I managed to get a high number of unused IP addresses from the university network administrator, all traffic from these are routed to my computer. Now i'm having 200 packet/s income rate, but nepenthes only looks...

HITBSecConf2009 - Malaysia: Call for Papers

Wed, 15 Apr 2009 12:12:17 +0800

Posted by S. Praburaajan on Apr 15

The Call for Papers for HITB Security Conference 2009 Malaysia is now open!

Talks that are more technical or that discuss new and never before seen
attack methods are of more interest than a subject that has been covered
several times before. Summaries not exceeding 1250 words should be
...

In need of LOTS of quotsanitized Sebek Keystrokes

Sat, 11 Apr 2009 11:47:08 -0700 (PDT)

Posted by Blarnum Seamus on Apr 11

Hey All,

I am trying to write a college paper on various hacker methods and I would like to know if anyone has any sanitized sebek keystroke logs I could use in my paper. All I need is the actual command inputs and any associated process information. Everything else is not required (or better...