An investigation of a compromised host on a honeynet being used to increase the security of a large enterprise network

Proceedings fron the Fifth Annual IEEE System, Man and Cybernetics Information Assurance Workshop, SMC

Volumn , Issue , 2004, Pages 9-14

  Jackson, Timothy R ^a   Levine, John G ^a   Grizzard, Julian B ^a   Owen, Henry L ^a  

^a GEORGIA INSTITUTE OF TECHNOLOGY   (United States)

Author keywords

[No Author keywords available]

Indexed keywords

INTRUSION DETECTION SYSTEM (IDS); MALICIOUS CODE; NETWORK TRAFFIC; TRAFFIC MONITORING;

ALARM SYSTEMS; COMPUTER NETWORKS; COMPUTER SYSTEM FIREWALLS; COMPUTER WORMS; ELECTRONIC CRIME COUNTERMEASURES; MONITORING; RISK ASSESSMENT; TELECOMMUNICATION TRAFFIC;

SECURITY OF DATA;

EID: 15944365123     PISSN: None     EISSN: None     Source Type: Conference Proceeding    
DOI: None     Document Type: Conference Paper

References (12)

1. Network Associates Technology, Inc. http://www.nai.com/us/security/home. asp.
2. McClure, Scambray, and Kurtz, Hacking Exposed: Network Security Secrets & Solutions, Fourth Edition. New York, NY: McGraw-Hill/Osborne, 2003, pp. 36-68.
3. J. Levine, R. LaBella, H. Owen, D. Contis, and B. Culver, "The use of honeynets to detect exploited systems across large enterprise networks," in Proceedings of the 2003 IEEE Workshop on Information Assurance and Security, (United States Military Academy, West Point, NY), June 2003.
4. P. Kaufman and Spencier, Network Security Private Communications in a PUBLIC World. Upper Saddle River, NJ: Prentice Hall PTR, 2002, pp. 586-593.
5. McClure, Scambray, and Kurtz, Hacking Exposed: Network Security Secrets & Solutions, Fourth Edition. New York, NY: McGraw-Hill/Osborne, 2003, pp. 481-502.
6. Spitzner, Honeypots: Tracking Hackers. New York, NY: Addison-Wesley, 2003, pp. 58-64.
7. The Honeynet Alliance. http://project.honeynet.org/challenge/results/ index.html.
8. The Honeynet Alliance, "Honeypots Mailing List."
9. The Honeynet Project, Know Your Enemy: Revealing the Security Tools, Tactics, and Motives of the Blackhat Community. New York, NY: Addison-Wesley, 2002, pp. 75-94.
10. Spitzner, Honeypots: Tracking Hackers. New York, NY: Addison-Wesley, 2003, pp. 65-68.
11. The Honeynet Project, Know Your Enemy: Revealing the Security Tools, Tactics, and Motives of the Blackhat Community. New York, NY: Addison-Wesley, 2002, pp. 104-106.
12. T. Jackson, "Windows 2000 rootkit analysis." http://users.ece.gatech.edu/~owen/Research/HoneyNet/Quarterly/ Analysis_of_Windows_2000_root-kit.htm, January 2004.