Analysis

December 20, 2010

TaiWan Malware Analysis Net

Basically, The TWMAN is an automated behavioral malware analysis environment to analyze the malware targeted at Microsoft Windows, and it can develop a free and open […]
June 15, 2009

Improving Glastopf

Last saturday I’ve finally released a new Glastopf version. There are some new features and many changes under the hood. New implemented features: LFI (Locale File […]
June 14, 2009

Precall and Postcall

When using hooking technology to intercept system calls, there are two different places to collect information: before the original function is called (precall) and after the […]
June 7, 2009

Get system call address from SSDT

One difference in Qebek from other existing virtualization based honeypot monitoring tool is that I want to ‘hook’ the function of system service instead of the […]
May 27, 2009

Honeybrid: combining low and high interaction honeypots

The goal of this post is to introduce myself and my project: my name is Robin Berthier and I just got my PhD from the University […]
May 27, 2009

Introducing Glastopf, a Web Application Honeypot

Hello, this initial blog post is used to introduce me and to provide a brief overview of my GSoC Project. My name is Lukas Rist (my […]
April 24, 2009

LEET09 Paper: PhoneyC: A Virtual Client Honeypot

Earlier this week I had the good fortune to be in Boston for LEET09, a workshop on exploits, malware, and large-scale trends. I presented on PhoneyC, […]
March 2, 2009

Annual Honeynet Workshop

Once a year the Honeynet Project brings together members from around the world for a one week workshop on honeypot research, development and deployments.  This year’s […]
February 12, 2009

Mexican Chapter – Annual Report

=== ORGANIZATION ===The Mexican HP Chapter members are:Miguel Hernández y López (miguel_at_honeynet.org.mx)Hugo Gonzalez Robledo (hugo_at_honeynet.org.mx)=== DEPLOYMENTS ===* Capture HP deployment and a nepenthes sensor in several […]