Tag Archives: Projects

Low-interaction honeyclient Thug released!

I’m glad to announce I publicly released a brand new low-interaction honeyclient I’m working on from a few months now. The project name is Thug and it was publicly presented during the Honeynet Project Security Workshop in Facebook HQ in … Continue reading

Posted in Honeynet Project, Projects, Thug | Tagged , ,

PHoneyC DOM Emulation – Browser Personality

A new improvement in PHoneyC DOM emulation code was committed in SVN r1624. The idea is to better emulate the DOM behaviour depending on the selected browser personality. Let’s take a look at the code starting from the personalities definition … Continue reading

Posted in Honeynet Project, PHoneyC, Projects | Tagged , ,

Another great step forward

“Dionaea is meant to be a Nepenthes successor, embedding Python as scripting language, using libemu to detect shellcodes, supporting IPv6 and TLS” (taken from Dionaea homepage). Besides being the most interesting project for trapping malware exploiting vulnerabilities, Dionaea supports a … Continue reading

Posted in Honeynet Project, Projects, TIP | Tagged , ,

PHoneyC DOM Emulation – Window

A few weeks ago I started reviewing the PHoneyC DOM emulation code and realized it was turning to be hard to maintain and debug due to a huge amount of undocumented (and sometimes awful) hacks. For this reason I decided … Continue reading

Posted in Honeynet Project, PHoneyC, Projects | Tagged , ,

I love this game!

Today I was in need for fun and so I started adding a new API call which allows to check if a domain is malicious or not. The check avoids to hit the database at all but just queries the … Continue reading

Posted in Honeynet Project, Projects, TIP | Tagged , ,

Just can’t get enough!

It’s really a long time I do not post about TIP. The good news is that TIP is starting growing really fast and this is mainly due to its modular design which allows to plug different kind of tracking modules … Continue reading

Posted in Projects, TIP | Tagged ,