back

Breaking Honeypots for Fun and Profit

If you suspend your transcription on amara.org, please add a timestamp below to indicate how far you progressed! This will help others to resume your work!

Please do not press “publish” on amara.org to save your progress, use “save draft” instead. Only press “publish” when you're done with quality control.

Video duration: 00:54:15
Language: English
Abstract: We will detect, bypass, and abuse honeypot technologies and solutions, turning them against the defender. We will also release a global map of honeypot deployments, honeypot detection vulnerabilities, and supporting code.

The concept of a honeypot is strong, but the way honeypots are implemented is inherently weak, enabling an attacker to easily detect and bypass them, as well as make use of them for his own purposes. Our methods are analyzing the network protocol completeness and operating system software implementation completeness, and vulnerable code.

As a case study, we will concentrate on platforms deployed in real organizational networks, mapping them globally, and demonstrating how it is possible to both bypass and use these honeypots to the attacker's advantage.

Talk ID: 7277
Event:: 32c3
Day: 4
Room: Hall 1
Start: 4 p.m.
Duration: 01:00:00
Track: Security
Type of: lecture
Speaker: Gadi Evron; DeanSysman; Itamar Sher
Talk Slug & media link: 32c3-7277-breaking_honeypots_for_fun_and_profit

: Video Recording

English

0.0%

100.0%

Work on this video on Amara!

This talk has a pad for the transcript, please use this instead of the amara editor: Etherpad
Shortcut to the video files: CDN Video Link or YouTube Video Link use this with otranscribe.com

Breaking Honeypots for Fun and Profit

Work on this video on Amara!

Please check: