+ Follow

Honeypots in Cyberwar

by Mehdi Poustchi Amin

Honeypots role in Cyberwar

File a copyright complaint

How honeypot can be classify ?Honeypots are classified by the level of interaction they provide to the attackerThere are two type of honeypots :Low-interaction High-interactionIn Low-interaction honeypot Only some parts of (vulnerable) applications or operating systems are emulated by software.Internet worms, like Slammer, and port scans can often be identified by low-interaction honeypotsButIn High-interaction honeypot a full working operating system interact with attacker.The administrators install the OS as they normally would, but then leave it in an unpatched state with popular hacker holeleft open.For instance, installing Windows NT Server 4.0, but leaving it at Service Pack 2 and with IIS 4.0OrA Windows 98 machine with an unprotected shared NetBIOS folder