Re: EEye to build world's largest honeypot

[Landon Lewis <lewis () digitalbond com>]

While the results will be interesting, I don't think it can be  
properly classified as a honeypot. Correct me if I'm wrong, but isn't  
this a HIPS/HIDS with event correlation and analysis? The users of  
the product aren't exactly trying to have a juicy/interesting target  
and lure in an attack for early detection and event analysis. This  
solution may however share some of the same benefits of a honeypot.

LL

On Oct 19, 2006, at 5:58 AM, Mark Ryan del Moral Talabis wrote:

> Enterprise security vendor eEye is preparing to unveil a free version
> of its Blink security software for consumers.
>
> Blink offers a single application that protects against buffer
> overflow and phishing attacks. It also offers intrusion prevention,
> application white-listing and location-specific security settings.
>
> Consumers will be asked to share data on attacks that target their
> computers. The software will then act as the world's largest honeypot,
> allowing the firm to collect samples of live exploits and malware as
> soon as they become available.
>
> More on:
> http://www.vnunet.com/vnunet/news/2166552/eeye-seeks-build-mega- 
> honeypot
>
> --
> Mark Ryan del Moral Talabis
> MS GSEC MCP PTRP
>
> The Philippine Honeynet Project
> http://www.philippinehoneynet.org