Uncategorized

October 1, 2012

HoneyMap – Visualizing Worldwide Attacks in Real-Time

The HoneyMap shows a real-time visualization of attacks against the Honeynet Project’s sensors deployed around the world. It leverages the internal data sharing protocol hpfeeds as […]
August 27, 2012

6Guard: a honeypot-based IPv6 attack detector

6Guard is a honeypot-based IPv6 attack detector aiming at detecting the link-local level attacks, especially when the port-mirror feature of switch is unavailable. Intallation Download and […]
August 20, 2012

Introducing Acapulco: Building Clustered Parallel Coordinates Graphs from HPFeeds data

…and the summer is over. During the last three months I have tried to make sense of the highly unstructured data set that comes from merging […]
September 2, 2011

DroidBox: beta release

Beta version is out and the install instructions are available at the project webpage. The new features are: Prevent some emulator evasion techniques Added visualization of […]
August 12, 2011

Webviz is out for your reviews

While the “pencil down” date is approaching, i would like to announce the latest situation at Webviz project. From the last time till time, there have […]
July 5, 2011

Summary on Webviz Project

The review period is coming and i decided to write an entry to inform about the Webviz project. Till now the first output of the project […]
May 24, 2010

Waledac’s Anti-Debugging Tricks

The last spreading malware version of Waledac, a notorious spamming botnet that has been taken down in a collaborative effort lead by Microsoft earlier this year, […]
November 15, 2009

RE-Google – or how Grandma started Reverse Engineering

Some people say “Reverse Engineering is an art”. Well, this might be true if you consider stuff like mathematics as art. It is more an application […]
August 7, 2009

Honeybrid testing

Second milestone reached! Honeybrid has now all its functionalities working and it’s time for testing. In order to check that everything works efficiently, I deployed a […]