Category Archive: Malware

Jan 25 2013

How to install Thug Python client honeypot

UPDATE JULY 2014: This guide is considered “old” now. You probably want to try the new Thug-Vagrant project: http://bruteforcelab.com/vagrant-configuration-thug-honeyclient.html So, after a brief discussion with Twitter fellows @KDPryor and @Tazdrumm3r about Thug, the Python low-interaction honeyclient, I decided to write a proper installation guide for it since the official one is not quite complete. I have …

Continue reading »

Jan 16 2013

Ανάλυση malware, για όλους! [μέρος 1]

Μπαίνοντας στο γραφείο του, Δευτέρα πρωί και μετά από ένα ήσυχο κι ευχάριστο Σαββατοκύριακο, ο Μέσος Παπαδόπουλος δέχεται έναν αναπάντεχο βομβαρδισμό παραπόνων από τους υπαλλήλους της εταιρείας. Όλη η γκρίνια φαίνεται να αφορά σε έναν Windows Server, ο οποίος φιλοξενεί το μισό Intranet κι από νωρίς το πρωί σέρνεται. Δεν περνά πολλή ώρα κι ο …

Continue reading »

Jan 16 2013

HoneyDrive 0.2 Nectar edition released!

Hello all 🙂 Once more, I’m in the happy position to announce a new release for HoneyDrive (Desktop)! This is version 0.2 aka Nectar edition, which brings more honeypot and malware related tools on the distro. You can download it from HoneyDrive’s SourceForge page at: http://sourceforge.net/projects/honeydrive/ Changes and additions on this version (in no particular …

Continue reading »

Jan 12 2013

Visualizing Dionaea’s results with DionaeaFR

Hello readers and honeypot enthusiasts. As I was writing a couple of articles on basic malware analysis, I noticed today that a new visualization tool was released for Dionaea malware honeypot! In fact I had in mind to develop something along the lines of Kippo-Graph for Dioanea as well, so I am very happy to …

Continue reading »

Video

TekTip ep18 – HoneyDrive

Dec 26 2012

HoneyDrive Desktop released!

Hello! Merry X-Mas to all 🙂 I am very happy to be in the position to announce the newest addition to my projects: HoneyDrive (Desktop). What is it? Here is a brief but informative description: HoneyDrive is a virtual appliance (OVA) with Xubuntu Desktop 12.04 32-bit edition installed. It contains various honeypot software packages such …

Continue reading »

Video

NICT Daedalus Cyber-attack alert system

Page 4 of 512345