http://blog.gmane.org/gmane.comp.security.honeypots hourly 1 1901-01-01T00:00+00:00 http://gmane.org/img/gmane-25t.png http://gmane.org http://comments.gmane.org/gmane.comp.security.honeypots/3953 <pre>Hello everyone, I would like share with you for educational purposes and without any commercial purpose, data collected by the my homemade honeypot. Nothing new, nothing shocking, nothing sensational... but I think can be of interest to newcomers to the world of analysis of malware, botnets, etc... maybe for a thesis. The files collected are divided into zip archives, in alphabetical order, with password (which must be request via email). Some details: - Honeypot ISP: AS3269 Interbusiness (Telecom Italia) - Honeypot software: amun, dionaea - Total files: 7085 - Period of time: Aug 2009 - Feb 2013 - Type of files: ASCII, data, HTML, MS-DOS, PE32 (dll, gui, Mono/.Net) More information can be viewed here: http://www.nothink.org/honeypots.php Always from this page, daily, some logs are available for download, parsabili easily and used for statistical purposes. Cheers, Matteo Cantoni </pre> Matteo Cantoni 2013-02-14T09:46:27 http://comments.gmane.org/gmane.comp.security.honeypots/3951 <pre>EUSecWest 2012, Amsterdam, September 19/20, Featuring Mobile PWN2OWN CALL FOR PAPERS - Deadline June 15 2012    AMSTERDAM, Nederland -- The seventh annual EUSecWest    applied technical security conference - where the eminent    figures in the international security industry get    together share best practices and technology - will be    held in downtown Amsterdam near Leidseplein Square on    September 19/20, 2012. The most significant new    discoveries about computer network hack attacks and    defenses, commercial security solutions, and pragmatic    real world security experience will be presented in a    series of informative tutorials.    This year the EUSecWest conference will also host    dedicated security coverage of mobile devices, and host    the first mobile device only focused PWN2OWN competition,    where researchers get to demonstrate live vulnerability    attack code against designated targets and, if    successful, get to keep the target hardware and cash</pre> Dragos Ruiu 2012-06-05T01:26:44 http://comments.gmane.org/gmane.comp.security.honeypots/3950 <pre>The 8th issue of the HITB Quarterly Magazine is now available for download! http://magazine.hitb.org/ This edition is a little bit 'lighter' than previous issues as the editorial team is busy working on an extra special release for our 10th year anniversary conference in October, HITBSecConf2012 - Malaysia. http://conference.hitb.org/hitbsecconf2012kul/ For the first time ever though, we're making print editions of the magazine available (courtesy of HP MagCloud) - A print edition of the HITB Quarterly is a perfect addition for your coffee table or office reception area and we'll be making past issues also available for print over the next couple of weeks. We're hoping that print sales will allow us to pay our authors and contributors for their articles, so ordering a print copy is a way for you to help support them! Putting together content for the magazine is practically a full time job and it would be nice to offer authors some form of compensation for the time and energy taken to produce the high qu</pre> Hafez Kamal 2012-04-23T14:19:13 http://comments.gmane.org/gmane.comp.security.honeypots/3949 <pre>This is a call for submissions for the HITB SIGINT sessions at HITB2012AMS - The third annual HITB conference in Amsterdam taking place at the Okura from the 21st - 25th of May. The HITB SIGINT (Signal Intelligence/Interrupt) sessions are designed to provide a quick 15 - 30 minute overview for material and research that's up and coming - stuff that isn't quite ready for the mainstream tracks of the conference but deserve a mention nonetheless. These sessions are not only for seasoned security professionals but are also open to all final year students based in The Netherlands or around Europe who want to present their projects to industry experts and prove their worth before they graduate. These sessions are held during the conference coffee and lunch breaks and are strictly meant for research papers that are at least 50% COMPLETE by the time of submission and are NON COMMERCIAL in nature. INTERESTED IN SUBMITTING? ========================= Send us your proposed talk abstract (1250 words), your bio (incl</pre> Hafez Kamal 2012-03-08T14:10:59 http://comments.gmane.org/gmane.comp.security.honeypots/3948 <pre>Hi. The Honeynet Project holds its second Public Event on March 19 - 20, 2012 at Facebook HQ, SF Bay Area, Ca (USA). Public event consists on a one-day technical presentations and a one-day hands-on tutorial trainings. All details available here: https://honeynet.org/SecurityWorkshops/2012_SF_Bay_Area Regards, Guillaume Arcas ------------------------- PR - The Honeynet Project </pre> Guillaume Arcas 2012-02-02T13:53:09 http://comments.gmane.org/gmane.comp.security.honeypots/3946 <pre>Hi, I would like to ask if you guys have any suggestions (including articles, references, books, sites, ideas, anything) on how to build a "Poor man's Cyber Warfare / Network Defense Simulation" for: 1 - study 2 - forensic analysis 3 - vulnerabilities replication 4 - worm/virus spreading 5 - DLP (data leak/loss prevention) study 6 - ??? For my first attempts I used a dual-quad xeon server with 32GB ram and managed to create a whole network with ids/ips, firewall, workstations, attackers, database, log collecting using linux containers (lxc). Thank you all Teophilo Athos Brauns ------------------------------------ Security Enthusiast </pre> Teóphilo Athos Brauns 2012-01-24T11:45:03 http://comments.gmane.org/gmane.comp.security.honeypots/3945 <pre>So after a dozen years or so organizing conferences, you get the urge to pull levers and try experimenting with things. So this year I sent out the CanSecWest CFP only over Twitter, and G+ publicly. Just curious as to the adoption and information dispersion rate, and some estimate of the attention these newer channels are getting. So after this experiment I hear about people having submissions and missing  the CFP. So for my control set, here is the normal announce message to different e-mail lists. We'll do a Second CanSecWest CFP, but a brief one. Send us your proposal by the end of Monday next week, December 5, 2011. The questions and information needed is the same as usual (see website), also for my curiosity could you include: 12. Where did you hear about the CFP from? cheers, --dr </pre> Dragos Ruiu 2011-12-02T02:27:23 http://comments.gmane.org/gmane.comp.security.honeypots/3944 <pre>CFP: Special Issue of COMPUTER NETWORS (ELSEVIER) on "Botnet Activity: Analysis, Detection and Shutdown" Apologies for multiple copies of this announcement. ------------------------- Dear Colleagues, Please consider the following opportunity to submit and publish original scientific results to a SPECIAL ISSUE of COMPUTER NETWORKS (ELSEVIER journal) on "Botnet Activity: Analysis, Detection and Shutdown". The submission deadline is set to December 1st, 2011. http://ees.elsevier.com/comnet/ A pdf version of this CFP is available at http://faculty.cse.tamu.edu/guofei/CFP_COMNET-Botnets.pdf Please help distribute. Thanks! ------------------------- Large scale attacks and criminal activities experienced in recent years have exposed the Internet to serious security breaches, and alarmed the world regarding cyber crime. In the center of this problem are the so called botnets -- collections of infected zombie machines (bots) controlled by the botmaster to perpetrate malicious activities and massive attacks. S</pre> Guofei Gu 2011-08-24T14:59:11 http://comments.gmane.org/gmane.comp.security.honeypots/3942 <pre>Hi everyone and greetings from Netherlands! We're finally done with the epicness that was HITB2011AMS! Over 300 attendees and 45 speakers joined us for 2 days of trainings and a 2 day quad-track conference and it was a blast as always! Presentation materials can be downloaded from: http://conference.hitb.nl/hitbsecconf2011ams/materials/ In addition, photos from the event have also been uploaded to a gallery on HITBSecPhotos: http://photos.hitb.org/ The Call for Papers (CFP) for HITB2011KUL (October 10th - 13th &lt; at &gt; Intercontinental Kuala Lumpur, Malaysia) is still open and submissions are due before the 15th of July: http://cfp.hackinthebox.org/ --- On a somewhat related note, we've also recently migrated our old hackinthebox.org news portal to a new home - HITBSecNews running at http://news.hitb.org/ and also launched a new landing page at the old URL. We know a fair number of folks have been asking about the next issue of the HITB quarterly magazine (http://magazine.hitb.org) and we're happy to announ</pre> Hafez Kamal 2011-06-08T03:48:11 http://comments.gmane.org/gmane.comp.security.honeypots/3941 <pre>Call for Papers Hack.lu 2011 The purpose of the hack.lu convention is to give an open and free playground where people can discuss the implication of new technologies in society. hack.lu is a balanced mix convention where technical and non-technical people can meet each others and share freely all kind of information. The convention will be held in the Grand-Duchy of Luxembourg in September (19-21.09.2011). The most significant new discoveries about computer network attacks and defenses, commercial security solutions, and pragmatic real world security experience will be presented in a three days series of informative tutorials. We would like to announce the opportunity to submit papers, and/or lightning talk proposals for selection by the hack.lu technical review committee. This year we will be doing workshops on the first day PM and talks of 1 hour or 30 minutes in the main track for the two following days. A capture the flag contest wil</pre> hack.lu 2011 information team 2011-04-21T13:31:24 http://comments.gmane.org/gmane.comp.security.honeypots/3940 <pre>Call for Papers 8th Annual Collaboration, Electronic Messaging, Anti-Abuse and Spam Conference (CEAS 2011) Perth, Western Australia, 1-2 Sept, 2011 http://ceas2011.debii.edu.au/ Proudly Hosted by the Anti Spam Research Lab in the Digital Ecosystems &amp; Business Intelligence Institute, Curtin University http://asrl.debii.curtin.edu.au ========================================================================== Topics of Interests ========================================================================== Track: Email Spam - Prevention &amp; Detection Techniques - Scalability, reliability, archiving, and retrieval - Early Detection Techniques - Behaviour based Techniques Track: Network Security - Message filtering, organization, and security - Network layer protocols for anti spam - Network traffic monitoring for spam prevention - IP &amp; MPLS security, Anti-DDoS techniques - Sand box, malware/botnet detection - Risk assessment, Vulnerability detection - Deep packet inspection, IPv6 security Track:</pre> ceas2011< at >gmail.com 2011-03-10T06:19:29 http://comments.gmane.org/gmane.comp.security.honeypots/3939 <pre>HITB Magazine is currently seeking submissions for our next issue. If you have something interesting to write, please drop us an email at: editorial&lt; at &gt;hackinthebox.org TOPICS Topics of interest include, but are not limited to the following: * New Attack and Defense Techniques * Reverse Code Engineering * Network Security * Forensics and Incident Response * WLAN, GPS, HAM Radio, Satellite, RFID and Bluetooth Security * Cryptography * Hardware Hacking * Malware Analysis * Lock Picking / Physical Security HITB Magazine is a deep-knowledge technical magazine. Articles that are more technical or that discuss new and never before seen attack methods are of more interest than a subject that has been covered several times before. Please send your article to editorial () hackinthebox org Submissions for issue #6 due no later than 5th of April 2011 --- Hafez Kamal HITB Crew Hack in The Box (M) Sdn. Bhd. Suite 26.3, Level 26, Menara IMC, No. 8 Jalan Sultan Ismail, 50250 Kuala Lumpur, Malaysia Tel: +603-20394724 Fa</pre> Hafez Kamal 2011-03-08T10:14:42 http://comments.gmane.org/gmane.comp.security.honeypots/3938 <pre>[ Apologies if you receive multiple copies of this announcement. Please pass it on to your colleagues and students who might be interested in contributing. ] Ninth Annual Conference on Privacy, Security and Trust ------------------------------------------------------ July 19-21, 2011 Montreal, Quebec, Canada http://www.unb.ca/pstnet/pst2011 Call for Papers --------------- The PST2011 International Conference on Privacy, Security and Trust (PST) is being held in Montreal, Quebec, Canada, July 19-21, 2011. PST2011 is the ninth such annual conference focusing on PST technologies. PST2011 provides a forum for researchers world-wide to unveil their latest work in privacy, security and trust and to show how this research can be used to enable innovation. Easychair submission link of PST 2011: http://www.easychair.org/conferences/?conf=pst2011. IMPORTANT DATES: ---------------- Submission Deadline: March 20, 2011 Notification of Acceptance: May 9, 2011 Final Manuscript Due: May 22, 2011 </pre> Serguei A. Mokhov 2011-02-19T09:39:27 http://comments.gmane.org/gmane.comp.security.honeypots/3936 <pre>Happy 2011 everyone! Just a reminder that the Call for Papers for the second annual HITBSecConf in Europe is closing on the 18TH OF FEBRUARY! We've received some awesome submissions so far and the event is really shaping up nicely. The event will once again take place at the NH Grand Krasnapolsky in Amsterdam from the 17th - 20th of May. HITB2011AMS will be a quad-track conference line up featuring keynote speaker Joe Sullivan (Chief Security Officer of Facebook) and a special keynote panel discussion on 'The Economics of Vulnerabilities' In addition, the event also features a brand new Capture The Flag - World Domination competition run by the HITB.nl CTF Crew, an expanded Hackerspaces Village (now featuring a Hackerspaces Challenge with LEGO MINDSTORMS!) an updated Lock Picking Village run by members from TOOOL.nl and of course the HITBSIGINT sessions - 15 minute talks held during the coffee and lunch breaks with a focus on highlighting up and coming research and researchers. As always, talks that are m</pre> Hafez Kamal 2011-01-31T04:14:02 http://comments.gmane.org/gmane.comp.security.honeypots/3935 <pre>CALL FOR PAPERS - 6th Annual Symposium on Information Assurance (ASIA '11) 14th Annual New York State Cyber Security Conference Empire State Plaza, Albany, NY June 7-8, 2011 WEBSITES: http://www.albany.edu/iasymposium (ASIA - for academic peer-reviewed presentations &amp; proceedings) http://www.cscic.state.ny.us/security/conferences/security/2011/2011call.cfm (Cyber Security Conference - for practitioner presentations) IMPORTANT DATES Paper Submission DeadlineFebruary 15, 2010 Reviewer Feedback March 15, 2011 Final Paper SubmissionMarch 31, 2011 Symposium DatesJune 7-8, 2011 Authors are invited to submit original and unpublished papers to the 6th Annual Symposium on Information Assurance. Accepted papers will appear in the symposium proceedings. This symposium is jointly held with the 14th Annual New York State Cyber Security Conference. This two-day event attracts practitioners, researchers, and vendors providing opportunities for business and intellectual engagement among attendees. The symposium is or</pre> Damira 2011-01-18T19:07:01 http://comments.gmane.org/gmane.comp.security.honeypots/3934 <pre>"First they ignore you, then they ridicule you, then they fight you, then you win." -- Mahatma Ghandi. Well if Fox's new comedy show "Breaking In" is any indication, infosec has now entered Ghandi's second stage. http://goo.gl/ZpLDp [youtube] (hat tip to Adam O'Donnell for this humorous find, and Sam Bowne for the quote/quip) But on a slightly more serious note. CanSecWest is nearing in the second week of March, and this year I've waited on sending out the CFP note/reminder. It's been up on the site for a while with a Dec 29 deadline, but this is the real last call for submissions. If you don't get them in by this weekend they won't make the selections review process next week. We'll try to announce the selections the week following. After 11 years, most of you should know the drill, but for those who haven't submitted or attended before, the fine print and usual further information is attached below. Other info: We are doing more dojo training courses  than ever this year (17!) and they </pre> Dragos Ruiu 2011-01-13T11:47:46 http://comments.gmane.org/gmane.comp.security.honeypots/3933 <pre>hello everybody, my honeyd process dies in irregular intervals. the pid/sock file still exists in /var/run. i got the following error in my /var/log/messages: --- Dec 6 13:11:25 pak kernel: [4025568.689145] honeyd[19804] general protection ip:7f7df4998d63 sp:7fffa6ae39e8 error:0 in libdumbnet.so.1.0.0[7f7df4993000+c000] Dec 6 13:11:25 pak kernel: [4025568.772168] device eth2 left promiscuous mode --- does anyone have suggestions how to solve this problem? regards marcel </pre> Marcel Keil 2011-01-08T08:29:11 http://comments.gmane.org/gmane.comp.security.honeypots/3932 <pre>nullcon Dwitiya (2.0) The Jugaad(hacking) Conference nullcon is an initiative by null - The open security community. Website: http://nullcon.net Calling all Jugaadus(hackers) It's the time of the year when we welcome research done by the community as paper submissions for nullcon. So, sip your coffee, dust your debuggers, fire your tools, challenge your grey cells and shoot us an email. Tracks: --------------- - Bakkar: 1 Hr Talks - Tez: 5-30 min Talks - Karyashala: 2-4 Hrs Workshop - Desi Jugaad (Local Hack): 1 Hr Submition Topics: ------------------------------ 1. One of the topics of interest to us is "Desi Jugaad"(Local Hack) and has a separate track of it's own. Submissions can be any kind of local hacks that you have worked on (hints: electronic/mechanical meters, automobile hacking, Hardware, mobile phones, lock-picking, bypassing procedures and processes, etc, Be creative :-D) 2. The topics pertaining to security and Hacking in the following domains(but not limited to) -</pre> nullcon 2010-11-16T17:56:33 http://comments.gmane.org/gmane.comp.security.honeypots/3931 <pre>Good Day! As you already know, we have released 4 issues in 2010 and gained a lot of experiences working on them. For 2011, we have some great plans for our readers. Our main focus for next year is to publish more high quality articles and for that reason, we are now announcing a Call for Articles. =) TOPICS Topics of interest include, but are not limited to the following: * New Attack and Defense Techniques * Reverse Code Engineering * Network Security * Forensics and Incident Response * WLAN, GPS, HAM Radio, Satellite, RFID and Bluetooth Security * Cryptography * Hardware Hacking * Malware Analysis * Lock Picking / Physical Security HITB Magazine is a deep-knowledge technical magazine. Articles that are more technical or that discuss new and never before seen attack methods are of more interest than a subject that has been covered several times before. Please send your article to editorial&lt; at &gt;hackinthebox.org Submissions for issue #5 due no later than 3rd January 2011 --- Hafez Kamal HITB Crew Hack i</pre> Hafez Kamal 2010-11-11T20:29:23 http://comments.gmane.org/gmane.comp.security.honeypots/3929 <pre>nullcon Dwitiya (2.0) The Jugaad(hacking) Conference nullcon is an initiative by null - The open security community. Website: http://nullcon.net Calling all Jugaadus(hackers) It's the time of the year when we welcome research done by the community as paper submissions for nullcon. So, sip your coffee, dust your debuggers, fire your tools, challenge your grey cells and shoot us an email. Tracks: --------------- - Bakkar: 1 Hr Talks - Tez: 5-30 min Talks - Karyashala: 2-4 Hrs Workshop - Desi Jugaad (Local Hack): 1 Hr Submition Topics: ------------------------------ 1. One of the topics of interest to us is "Desi Jugaad"(Local Hack) and has a separate track of it's own. Submissions can be any kind of local hacks that you have worked on (hints: electronic/mechanical meters, automobile hacking, Hardware, mobile phones, lock-picking, bypassing procedures and processes, etc, Be creative :-D) 2. The topics pertaining to security and Hacking in the following domains(but not limited to) -</pre> nullcon 2010-09-01T13:41:44 http://comments.gmane.org/gmane.comp.security.honeypots/3928 <pre>Hack In The Box is proud to announce, a brand new lightning session called HITB SIGINT (Signal Intelligence/Interrupt)! HITB SIGINT sessions are designed to provide a quick 15 minute overview for material and research that's up and coming - stuff that isn't quite ready for the mainstream tracks of the conference but deserve a mention nonetheless. Final year students who want to present their projects to industry experts are also strongly encouraged to submit their papers. These sessions are held during the conference coffee and lunch breaks. The papers would be reviewed by the main CFP panel and student submissions will be reviewed by the HITB Team. The best research paper presented will be voted on by the audience. This session is strictly meant for research papers that are at least 50% COMPLETE at the time of submission. What you get: # Chance to present your research at an international conference # Chance to get your research seen and reviewed by industry experts # Full access to the conference on 13t</pre> Hafez Kamal 2010-08-26T14:24:38 Search the mailing list at Gmane query http://search.gmane.org/?group=$group=gmane.comp.security.honeypots