Virtual honeypots : from botnet tracking to intrusion detection

Format:

Book

Author/Creator:

Provos, Niels, Author.

Contributor:

Holz, Thorsten, Contributor.

Language:

English

Subjects (All):

Computer security.

Physical Description:

1 online resource (480 pages)

Edition:

1st edition

Place of Publication:

[Place of publication not identified] Addison Wesley 2008

Language Note:

English

System Details:

text file

Summary:

Praise for Virtual Honeypots "A power-packed resource of technical, insightful information that unveils the world of honeypots in front of the reader’s eyes." —Lenny Zeltser, Information Security Practice Leader at Gemini Systems "This is one of the must-read security books of the year." —Cyrus Peikari, CEO, Airscanner Mobile Security, author, security warrior "This book clearly ranks as one of the most authoritative in the field of honeypots. It is comprehensive and well written. The authors provide us with an insider’s look at virtual honeypots and even help us in setting up and understanding an otherwise very complex technology." —Stefan Kelm, Secorvo Security Consulting "Virtual Honeypots is the best reference for honeypots today. Security experts Niels Provos and Thorsten Holz cover a large breadth of cutting-edge topics, from low-interaction honeypots to botnets and malware. If you want to learn about the latest types of honeypots, how they work, and what they can do for you, this is the resource you need." —Lance Spitzner, Founder, Honeynet Project "Whether gathering intelligence for research and defense, quarantining malware outbreaks within the enterprise, or tending hacker ant farms at home for fun, you’ll find many practical techniques in the black art of deception detailed in this book. Honeypot magic revealed!" —Doug Song, Chief Security Architect, Arbor Networks "Seeking the safest paths through the unknown sunny islands called honeypots? Trying to avoid greedy pirates catching treasures deeper and deeper beyond your ports? With this book, any reader will definitely get the right map to handle current cyber-threats. Designed by two famous white hats, Niels Provos and Thorsten Holz, it carefully teaches everything from the concepts to practical real-life examples with virtual honeypots. The main strength of this book relies in how it covers so many uses of honeypots: improving intrusion detection systems, slowing down and following incoming attackers, catching and analyzing 0-days or malwares or botnets, and so on. Sailing the high seas of our cyber-society or surfing the Net, from students to experts, it’s a must-read for people really aware of computer security, who would like to fight against black-hats flags with advanced modern tools like honeypots." —Laurent Oudot, Computer Security Expert, CEA "Provos and Holz have written the book that the bad guys don’t want you to read. This detailed and comprehensive look at honeypots p...

Contents:

Intro

Title Page

Copyright Page

Praise for Virtual Honeypots

Contents

Preface

Acknowledgments

About the Authors

Chapter 1. Honeypot and Networking Background

Chapter 2. High-Interaction Honeypots

Chapter 3. Low-Interaction Honeypots

Chapter 4. Honeyd - The Basics

Chapter 5. Honeyd - Advanced Topics

Chapter 6. Collecting Malware with Honeypots

Chapter 7. Hybrid Systems

Chapter 8. Client Honeypots

Chapter 9. Detecting Honeypots

Chapter 10. Case Studies

Chapter 11. Tracking Botnets

Chapter 12. Analyzing Malware with CWSandbox

Bibliography

Index

Footnotes

Chapter 1

Chapter 3

Chapter 4

Chapter 5

Chapter 6

Chapter 7

Chapter 8

Chapter 9

Chapter 10.

Notes:

Bibliographic Level Mode of Issuance: Monograph

Includes bibliographical references and index.

Description based on publisher supplied metadata and other sources.

ISBN:

9780321524959

0321524950

9780132702058

0132702053

OCLC:

172622818