Penetration Testing mailing list archives

A kind of Honeypot

From: Nicolas Gregoire <nicolas.gregoire () 7thzone com>
Date: Wed, 20 Jun 2001 10:42:41 +0200

Hi all,

I plan to make a website just for my pen-tests.

This website grabs as much as possible info from the visitors (IP,
browser, proxy, etc ..), tries to exploit some common vulns of browsers
(Guninski's page is a good start for this) and hosts a passive
fingerprinting app.
The victims are "spammed" with some misc. content (p0rn, free CD/DVD,
jokes) linking (or redirecting) to the site.

Has anybody ever do that ?

Nicob

Current thread:

A kind of Honeypot Nicolas Gregoire (Jun 20)
- Re: A kind of Honeypot max (Jun 21)
- Re: A kind of Honeypot Nexus (Jun 21)
- RE: A kind of Honeypot Andrew van der Stock (Jun 21)
- Re: A kind of Honeypot Lance Spitzner (Jun 21)
- <Possible follow-ups>
- Re: A kind of Honeypot Antonio Stano (Jun 22)