Uncategorized

January 9, 2014

Is Android malware served in theatres more sophisticated?

Pietro wrote a nice post about him finding Android malware while visiting the theatre. Thanks to Thug (thank you Angelo) and HoneyProxy, he was able to […]
March 27, 2013

Ghost 0.3 released

Today I’ve released version 0.3 of the Ghost USB honeypot, which introduces a lot of new features, including a completely rewritten core for better malware detection. […]
October 1, 2012

HoneyMap – Visualizing Worldwide Attacks in Real-Time

The HoneyMap shows a real-time visualization of attacks against the Honeynet Project’s sensors deployed around the world. It leverages the internal data sharing protocol hpfeeds as […]
August 27, 2012

6Guard: a honeypot-based IPv6 attack detector

6Guard is a honeypot-based IPv6 attack detector aiming at detecting the link-local level attacks, especially when the port-mirror feature of switch is unavailable. Intallation Download and […]
August 20, 2012

Introducing Acapulco: Building Clustered Parallel Coordinates Graphs from HPFeeds data

…and the summer is over. During the last three months I have tried to make sense of the highly unstructured data set that comes from merging […]
September 2, 2011

DroidBox: beta release

Beta version is out and the install instructions are available at the project webpage. The new features are: Prevent some emulator evasion techniques Added visualization of […]
August 12, 2011

Webviz is out for your reviews

While the “pencil down” date is approaching, i would like to announce the latest situation at Webviz project. From the last time till time, there have […]
July 5, 2011

Summary on Webviz Project

The review period is coming and i decided to write an entry to inform about the Webviz project. Till now the first output of the project […]
May 24, 2010

Waledac’s Anti-Debugging Tricks

The last spreading malware version of Waledac, a notorious spamming botnet that has been taken down in a collaborative effort lead by Microsoft earlier this year, […]