Results 1 to 2 of 2

Thread: Honeyd

  1. January 22nd, 2003, 11:52 AM #1
    UKnetSec
    UKnetSec is offline
    Senior Member
    Join Date
    Feb 2002
    Posts
    130

    Honeyd

    Just came across this

    Honeyd is an open source honeypot that is designed to be used on Unix-based operating systems, such as OpenBSD or Linux, and may soon be ported to Windows
    links http://online.securityfocus.com/
    http://www.citi.umich.edu/u/provos/honeyd/

    anyone fancy a free, open source honeypot??
    http://www.AntiOnline.com/sig.php?imageid=702
    Reply With Quote Reply With Quote
  2. January 22nd, 2003, 12:12 PM #2
    sweet_angel
    sweet_angel is offline
    Senior Member
    Join Date
    Aug 2002
    Posts
    508
    I have Honeyd installed in my Mandrake Linux 9 box.
    I can tell you little bit about Honeyd.
    Advantage of Honeyd:
    - Can monitor any UDP or TCP port and entire networks
    - It's free...(the best thing about Open Source)
    - Resist fingerprinting efforts by emulating operating systems at IP stack level as well as the application level

    Disadvantage of Honeyd:
    - As low-interaction solution, it cannot provide real Operating System for attackers to interact with.
    - As an OpenSource solution, it provides no formal support for maintenance and troubleshooting.
    - No built-in mechanism for alerting,nor any mechanism for capturing extensive information.

    At the moment I've been setting up my "other honeypot" (if you search google you will find differents kind of "honeypot" and I think the easy one is "BOF" stand for BackOfficer Friendly, BOF is low-interaction honeypot.
    Not an image or image does not exist!
    Not an image or image does not exist!
    Reply With Quote Reply With Quote
« Previous Thread | Next Thread »

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •  

Forum Rules