| Publisher | Honeynet Project | ||
|---|---|---|---|
| Format | HTML | Date added | 09 Nov 2000 |
| Topics | Application Security Tools, Security Standards | ||
| Downloads | 50 | ||
This paper was born out of pure curiosity. Our Honeynet was being pounded with UDP port 137 and TCP port 139 scans. The network was getting scanned 5-10 times a day on these ports and something was up. The goal was to learn what these scans were all about. What was out in the Internet causing all of this activity? Based on the ports, we assumed that the scans were looking for Window's based vulnerabilities. The plan was to setup a Win98 honeypot, sit back and wait. We didn't have to wait long. The Honeynet network does not advertises itself to the Internet. We just put the systems on our network and sit back and wait. That means that the majority of scans we receive are random scans that are most likely probing most of the Internet. These are the same threats your systems face. As these scans are probing Windows based systems, they are most likely focusing on the common homeowner with a DSL or Cable connection to their house.
Did you find this white paper useful?
24 out of 50 users found this white paper useful
Related white papers
Trial Download: Rational AppScan Standard Edition V7.9
To improve the security of web applications, it starts by building software securely. IBM Rational AppScan is a suite of Web application vulnerability scanners that include dynamic and static analysis...
Practical Approaches for Securing Web Applications across the Software Delivery Lifecycle
Enterprises understand the importance of securing web applications to protect critical corporate and customer data. What many don't understand, is how to implement a robust process for integrating security and...
Staying a step ahead of the hackers: the importance of identifying critical Web application vulnerabilities.
Security managers worldwide working for midsize or large organizations share a common goal: to better manage the risks associated with their business infrastructure. Web application security plays a significant role...
Webcast: Smart Techniques for application security: whitebox + blackbox testing.
Whitebox & blackbox application security testing are two approaches for detecting vulnerabilities in Web-based and network applications. Both have strengths and weaknesses, but a combination of the two provides the...
Is Your Security Effective? The Value of Application Security Testing Tools
Watch this new program and learn why you need strong application security testing tools, what these tools need to include, and where to turn to find the right solution for...
PCI DSS Compliance in the UNIX/Linux Datacenter Environment
This document explains how BeyondTrust PowerBroker supports the Payment Card Industry Data Security Standard (PCI DSS) by limiting and tracking authorization to execute commands and programs that access servers and...
Protect Data and Client Trust: An End-to-End Approach to Protecting Your Web Applications and Your Organization
Every day, more and more business is conducted online creating new challenges for meeting Web application security and compliance. It's a hacker's dream and your security nightmare. Due to the...
