Thursday, July 31, 2008

First post

This blog will follow my first attempt at creating a honeypot, hopefully it will turn out to be a success and I can move on to creating and managing entire honeynets and keep posting results and related info here.

For those who don't know, a honeypot is a machine or system designated to attract nefarious traffic towards itself to help analyze different attack methods and to gain more knowledge about the methods used to gain access to and exploit different computer systems.

I know this is a very basic explanation and I won't go too far into the specifics of what a honeypot or a honeynet is on this blog, in my future posts I will assume that my readers are familiar with the terms and the functions of these.

If you are unfamiliar with the terms honeynet or honeypot - I suggest you take some time to search for more info on it on google and wikipedia. you should be able to find all the info needed there in a matter of minutes.

My intention behind this blog is to easily share the knowledge I gain from this project with anyone who might be interested.

As a beginner wihtin the honeynet field of IT security I will share both the process of creating honeypots and honeynets and the evolution of these once I put them online.

At the current moment I am working on my first honeypot and I will post status updates and other relevant info here regularly.

The honeypot I am about to implement is a virtual one set up with VMWare, the OS I am beginning with is an unpatched version of Windows 2000.