Explore the world of honeypots in this 44-minute conference talk from BSides Tampa 2015. Delve into the history and evolution of honeypots, understanding their purpose and why they fell out of favor. Learn about Symantec's honeypot and Lenny Zelcer's contributions to the field. Examine medium interaction honeypots, network configurations, and password capture techniques. Witness a live demo showcasing IRC traffic analysis, including the use of Google Translate for communication. Gain insights into the behavior of potential attackers, including their attempts to buy root access and gather personal information. Discuss the ethical implications of honeypot usage and learn valuable takeaways for implementing these security tools in your own environment.
Overview
Syllabus
Intro
What is a Honeypot
Why did Honeypots go away
ymantec Honeypot
Lenny Zelcer
Medium Interaction
Disclaimer
Network
PseudoSh
Password Capture
Outbound Traffic
Demo
IRC Traffic
Piccolo
Dragon Ball Z
New IRC handles
Best of friends
Conversation
Google Translate
Im stealing
Honor Amongst Thieves
Private Message
Buying Root
Where He Lives
His Street
Im a minor
What do you do with them
Who sold them to
Why I changed my IRC handles
What does it all mean
Take aways
BSides
