Lets hear it for the honeymonkeys

By Roger on August 10, 2005 7:37 PM |

Worthwhile article over at SecurityFocus on Microsoft's HoneyMonkey project. We first heard of them one or two months ago, and its neat to see this update.

Traditionally a honeypot sits back and waits to be attacked. In the honeymonkey model, they go out and find websites, and look at the result of going to the website. Using this method they have found sites that serve up exploits, including at least one zero day. (the zero day was an exploit of the jview vulnerability patched in July).

Also interesting is the report that even a partially patched version of Windows XP Service Pack 2 blocks the lion's share of attacks.

According to the article Microsoft plans to forward the information on these sites to law enforcement.

Categories

Microsoft

About this Entry

This page contains a single entry by Roger published on August 10, 2005 7:37 PM.

History Channel: THE MAN WHO PREDICTED 9/11 was the previous entry in this blog.

PowWeb adds SPF to mail servers is the next entry in this blog.

Find recent content on the main index or look in the archives to find all content.

Subscribe to feed Subscribe to this blog's feed
Add to Google
Please contact me by leaving a comment where appropriate. Otherwise, you can click here to reveal an email address for me.
Got Backups? Get Safe Online Remember Rick Rescorla Powered by Movable Type 4.2-en

Search