Main Page

From Honeynet-PT

Welcome to The Portuguese Honeynet Project

Hot News

18/01/2010 - Honeynet Forensic Challenge 2010. The first challenge of the Honeynet Forensic Challenge 2010 has been posted at http://honeynet.org/node/504. The task is to analyze a packet capture that was collected by a honeypot.

Get the pcap at http://honeynet.org/files/attack-trace.pcap_.gz, they were provided together with the questions by Tillmann Werner. Deadline for submissions is Monday, February 1st 2010 at 17:00 EST. There will be some small prizes, among them signed copies of our book "Virtual Honeypots: From Botnet Tracking to Intrusion Detection". Full information is available at http://honeynet.org/node/504.

News from The Honeynet Project - Portugal

14/07/2009 - "Honeypots, história e definição". The following article was in queue to be published in an online security magazine. However, since it seems there are some misconceptions about Honeypots the article is being released here. The article was written some time ago and, for the time being, it is only available in portuguese. Full copy available here.

10/01/2009 - Portuguese Chapter Status Report for 2008 published. Also available here.

01/01/2009 - Statistics section was released to the public (experimental).

14/02/2008 - HoneyMole 2.0.2 released.

28/09/2007 - HoneyMole 2.0.1 released.

14/09/2007 - HoneyMole 2.0 released.

30/08/2007 - HoneyMole 1.1.2 released.

22/06/2007 - New official maillist dedicated to the use and development of Honeymole. Subscribe it.

06/05/2007 - Rui Reis gave a talk, The Honeynet Project - Portugal, at "VII Encontro de Utilizadores Portugueses de OpenBSD" (Laboratório de Computação Avançada, Dep. Física, Univ. Coimbra).

17/04/2007 - Latest status report published.

22/01/2007 - We are building a huge database in order to study the worm binaries relations. If you have worm binaries to share please contact us. We need to process as many worm binaries as we can get.

30/05/2006 - HoneyMole 1.1.1 released.

01/05/2006 - HoneyMole 1.1 released.

28/04/2006 - Our server have moved back to NFSi Telecom, (home sweet home). Thanks guys.

13/04/2006 - First status report of this year has been published.

28/03/2006 - HoneyMole 1.0.2 released.

12/03/2006 - HoneyMole 1.0.1 released.

30/01/2006 - HoneyMole 1.0 was released to the public.

01/03/2005 - Honeypot Farms Using Ethernet Bridging over a TCP Connection. This paper describes a methodology and a prototype tool with the main objective of mitigating honeypot farm deployment complexity.

01/02/2005 - We have published information relating to our new tool, HoneyMole (former Kangaroo).

Global news from The Honeynet Project

26/06/2009 - Confusion about Honeypots. Read more here, here and here.

23/06/2009 - Free Honeynet Log Data for Research. The log data is posted here

08/12/2008 - The Honeynet Project has a new public website http://www.honeynet.org/

02/09/2008 - Capture-HPC 2.5.1 release Release Notes.

18/08/2008 - Release of a new paper of our Know Your Enemy series, KYE: Proxy Threats - Socks v666.

25/04/2008 - Honeywall roo 1.4 release candidate Honeywall project site

04/11/2007 - Release of a new paper of our Know Your Enemy series, KYE: Behind the Scenes of Malicious Web Servers. In this paper, we increase our understanding of malicious web servers through analysis of several web exploitation kits that have appeared in 2006/07: WebAttacker, MPack, and IcePack. Our discoveries will necessitate adjustments on how we think about malicious web servers and will have direct implications on client honeypot technology and future studies.

04/09/2007 - Capture BAT: version 2.0 released.

10/08/2007 - Honeyd 1.5c ported to Windows. Download it here.

16/07/2007 - The Honeynet Project & Research Alliance are excited to announce the release of a new paper, KYE: Fast-Flux Service Networks. This whitepaper details a growing technique within the criminal community called fast-flux networks. This is an architecture that builds more robust networks for malicious activity while making them more difficult to track and shutdown.

22/06/2007 - Pehunter is a snort dynamic preprocessor that grabs Windows executables off the network. Download

18/04/2007 - Capture Client Honeypot released

02/01/2007 - The Honeynet Research Alliance Member Organizations World Map

18/12/2006 - The Chinese Honeynet Project is proud to announce the release of HoneyBow sensor v0.1.0, a malware collection tool based on the high interaction honeypot principle, published under GPL license. HoneyBow sensor can be integrated with nepenthes (based on the low interaction honeypot principle) and the mwcollect Alliance's GOTEK architecture, to achieve an integrated malware collection solution.

13/11/2006 - Nepenthes 0.2.0 changelog and release notes