The Honeynet Project是一个国际知名的开源信息安全研究团队，致力于提升Internet的安全。取证分析挑战(Forensic Challenge)是The Honeynet Project向安全社区推出的一个重要项目，其目的是让安全社区有机会能够分析从Internet上捕获的实际攻击并分享他们的调查结果，通过参与取证分析挑战，安全人士和团队不仅可以了解最新的Internet安全威胁，也能学习到如何对它们进行分析，更好的是，他们还可以从其他提交者的分析结果和过程中，学习到分析攻击的新工具和新技术。而最好的是，取证分析挑战中的攻击都是在我们的成员从Internet上野外捕获到的真实攻击。

The Honeynet Project在几年前成功举办Scan of the month取证分析挑战之后，在2010年开始重启取证分析挑战项目，将包含对最新的操作系统和服务的服务器端攻击、客户端攻击、VoIP攻击、Web应用攻击等一系列的攻击场景。取证分析挑战欢迎安全社区人士积极参与，并将对Top 3的提交解答送出奖品。我们的成员也将提供一份解答样例，以公开的最新工具来分析挑战内容。

然而可能由于语言壁垒的问题，华语世界安全社区很少参与到The Honeynet Project的取证分析挑战中。在Mexico的The Honeynet Project年会之后，我们来自华语世界的分支团队（发起人：台湾团队的Julia Cheng，中国大陆团队的Jianwei Zhuge诸葛建伟，香港团队的Roland Cheung）将联合推出The Honeynet Project取证分析挑战中文版，与英文版采用同样的时间安排并行，提供简体中文版和繁体中文版的取证分析挑战内容，也将接受以中文撰写的提交解答（当然我们还是推荐华语世界的安全人士用英语参与The Honeynet Project取证分析挑战），对中文提交的解答，我们也将评出最佳解答，并提供奖励。我们希望借此机会让华语世界的安全人士更积极的参与The Honeynet Project以及世界开源安全社区的活动，获得更多的收获。

2010年第四次挑战 - VoIP（中文版的第一次）由来自澳大利亚团队的Ben Reardon和来自挪威团队的 Sjur Eivind Usken提供，将带您进入Internet上的语音通讯世界。本次挑战已于6月1日在我们的取证分析挑战网站上发布，我们将有1个月的时间接受提交解答，提交截止时间为北京时间2010年6月30日23:59。我们预计将在2010年7月21日发布结果，The Honeynet Project将对最好的3个英文提交解答进行奖励，也将对最好的中文提交解答进行奖励。

期待您的参与，谢谢！

Folks, the submission deadline for the Forensic Challenge 3 – “Banking Troubles” has passed. We have received 22 submissions and will be announcing results on Wednesday, May 12th 2010. With the 3rd challenge coming to an end, we would love to get your feedback on the challenges: Which challenge did you enjoy in particular and why? Do you have any suggestions on how to improve the challenge? Is there a particular challenge you would like to see in the future? Send your feedback to [email protected].

Folks, we have decided to extend the submission deadline of the Forensic Challenge 2010/3 - “Banking Troubles” for another week (deadline is now April 26th 2010.) Seems like this challenge is a bit tougher and we would like to give you all the opportunity to submit your results. For those folks that have already submitted, you can resubmit via the web form in case you would like to make changes to your solution. The Forensic Challenge 2010/3 can be accessed here: https://honeynet.org/challenges/2010_3_banking_troubles.

Challenge 3 of the Honeynet Project Forensic Challenge - titled “Banking Troubles” - is now online and we invite you to participate. Challenge 3 - provided by Josh Smith and Matt Cote from The Rochester Institute of Technology Chapter, Angelo Dell’Aera from the Italian Chapter and Nicolas Collery from the Singapore Chapter - is a bit different from our previous challenges in that we do not ask you to analyze a pcap network trace, but rather a memory image from a virtual machine. This should make for an interesting challenge!

Folks, its a frosty Tuesday morning in Seattle and the deadline for submissions to the forensic challenge 2010/2 “browsers under attack” has passed. We received a total of 34 for submissions from folks all over the world. Nicolas from the Singapore chapter will be judging the submissions in the next few days. We will announce the top three winners on Monday, 22nd of March 2010. Alongside, we will post their submissions as well as our sample solution. Since we were using a web form for this challenge, we will not acknowledge receipt of each submission. If you are unsure whether submission was successful, please email [email protected] and we can check the submission database.) Also, if you have any suggestions on how to improve the forensic challenge, please let us know.

We have decided to extend the submission deadline for our second forensic challenge - “browsers under attack” to Monday, 8th of March 2010. This gives you another week to participate in our latest challenge. Subsequently, the announcement of the results will also move another week to Monday, 22nd of March 2010.

I have contacted all the folks that have already submitted their solution to us about this change. They, of course, have the opportunity to resubmit their solution, if they so wish, until the new submission deadline on the 8th. (If you have submitted and did not receive an email from me, please contact us at [email protected])

Monday, February 1st, the submission deadline for challenge 1 of the Forensic Challenge 2010 has passed. We have received 88 submissions and Tillmann who has been judging them mentioned there were some excellent submissions in the mix. Tillmann will be highlighting some answers when we announce the results on the 15th of February.

I have acknowledged receipt of each submission received via email. If you have not received a confirmation mail from me, please contact me at [email protected] and I will check whether we have received it.

We have just posted the first challenge of the Forensic Challenge 2010. The first challenge deals with a network attack. It has been provided by Tillmann Werner from the Giraffe Chapter. It is accessible at https://honeynet.org/node/504. Submissions are due on Monday, February 1st 2010 and results will be released on Monday, February 15th 2010. The top three submissions will be awarded with small prizes. Check it out!

I am very happy to announce the Honeynet Project Forensic Challenge 2010. The purpose of the Forensic Challenges is to take learning one step farther. Instead of having the Honeynet Project analyze attacks and share their findings, Forensic Challenges give the security community the opportunity to analyze attacks and share their findings. In the end, individuals and organizations not only learn about threats, but also learn how to analyze them. Even better, individuals can access the write-ups from other individuals, and learn about new tools and techniques for analyzing attacks. Best of all, the attacks of the Forensic Challenge are attacks encountered in the wild, real hacks, provided by our members.