PaulDotCom mailing list archives
Re: Honeypot
From: Matt Erasmus <matt.erasmus () gmail com>
Date: Wed, 22 Jun 2011 10:46:21 +0200
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On 2011/06/21 10:41 PM, Michael Lubinski wrote:
Who runs honeypots? My research suggests that Dionaea seems to be the one. My goal is malware classification and collection.
I've been running a Dionaea and Kippo pot for a while now with mixed results. Nothing *really* interesting, but still pretty neat to see what's happening out there. Conficker is still featuring very highly in my daily attack lists. I'd be interested to hear how other peoples Kippo pots have been ? Mine seem to be fairly active but very little "return" traffic. - -- Matt Erasmus <matt.erasmus () gmail com> / blog: http://www.zonbi.org twitter: @mattdoterasmus / gpg: 0x5D87A56D / http://www.zonbi.org/gpg.txt -----BEGIN PGP SIGNATURE----- Version: GnuPG/MacGPG2 v2.0.16 (Darwin) iQEcBAEBAgAGBQJOAavdAAoJEARRZD5dh6Vt5E0IAIHXvgty6d6VGRtt7CtGkCFT UZFc/ttm1fD/NDVD2zy9qrhSYpT24enea/6xpgn/s1w/vZ6vPJXuOFrCi4k9BzbS 3rlWfnTpXigWGEWOf9UxjMqyK2eJ8Y4IopuHHRzD8shhHVDS3sI/n0R4o4DsAj/w q45vdpwYWiIFsyzEJqPDfu4mxnnpDrn/T6xvQ1LGsyxkBtUdz0r7a7rr9DCo+POc CKWC2PkDaGhsV04cgWTwv/7XVeYHw3BHupUGTkEQSJeFAaR8856WHoPj5wWYC3ea gz3krcdf36Z4o07mkAjXlB/DFtUR2H1AA8MUBIWE4dqtDYhxuXW9xwbZzBFQNnI= =NJuw -----END PGP SIGNATURE----- _______________________________________________ Pauldotcom mailing list Pauldotcom () mail pauldotcom com http://mail.pauldotcom.com/cgi-bin/mailman/listinfo/pauldotcom Main Web Site: http://pauldotcom.com
Current thread:
- Honeypot Michael Lubinski (Jun 21)
- Re: Honeypot Matt Erasmus (Jun 22)
- Re: Honeypot Ben Jackson (Jun 22)
- Re: Honeypot Michael Lubinski (Jun 22)
- Re: Honeypot Jim Halfpenny (Jun 23)
- Re: Honeypot Ben Jackson (Jun 23)
- Re: Honeypot Arch Angel (Jun 23)
- Re: Honeypot Michael Lubinski (Jun 22)
- Re: Honeypot Tom McCredie (Jun 23)