After playing with Dionaea for several weeks and starting to find some interesting information I have found one problem that I need to solve. Centralized Logging and Data collection. With many sensors in different locations I have no real way to gather information in a manner that makes sense to...
Read the full article2 days of honeypot traffic stats.
Recently I have decided to put one of my honeypots back online and within about 8 seconds it was hit with a MSSQL probe. I am hoping that this honeypot will bring me much joy and happy days as I learn more about the attacks, the mechanisms of spreading and what they are spreading. During this tim...
Read the full articleProving malware is different than proving attacker
Brian Krebs recently wrote an article titled Who Else Was Hit by the RSA Attackers? and while it was an interesting read it has a fundamental flaw. Based only on the article alone we can say that the networks in question have/had malware on the network talking to command and control networks. The...
Read the full articleThe users are stupid
I continue to hear the words “The users are stupid” in the security community and it honestly makes me mad. Not in the sense of the community is wrong but that the community is not looking to find the source of the problem. I see security professionals shifting blame of failings to the user and i...
Read the full articleAre we out of information to talk about?
Today I have finally had enough, I know I am only one person and new to the security industry so none of this matters but this is getting stupid. I will now be dropping any podcast that has Mr. Evans on it because now I see it has a PR play for the podcast itself, as well as furthering the agenda...
Read the full article
I started my life as a ASP classic developer and have since written code in ASP, ColdFusion, C, C++, PHP, Perl, Ruby, Python and others.
