Incident Analysis of Compromised OpenBSD 3.0 Honeypot

"This was the first honeypot I've ever decided to run. I had long drawn out plans for implementing the perfect honeynet, but sadly some of the hardware that was donated to me at the time was given in non-working condition so I wasn't able to implement the honeynet of my dreams. It seems likely there would be other people out there interested in running a sophisticated honeynet, but who lack all the desired equipment and so they think it cannot be done. This paper has been written to show you otherwise!" - Michael Anuzis

Babysteps With A Honeypot

"This document describes the build and running of my first honeypot. It was based heavily on the work done by Lance Spitzner and his colleagues of the HoneyNet project. The aim of my first deployment was to start gaining some experience in the handling of honeypot technologies, rather than concentrate on actual hacker activity." - Mark Cooper

Incident Analysis of a Compromised RedHat Linux 6.2 Honeypot

"This was the fourth honeypot system I had put into production, my honeypot had been offline for a couple weeks prior to this incident while I made a few changes to the way syslog worked and installed a bash keystroke logger. If you want to learn more details on how I set-up my honeypot then please read my paper describing my particular method of implementation." - Stephen Holcroft

Design Of A Default Redhat Server 6.2 Honeypot

"The following paper is a description of how I have designed and implemented a honeypot system. The paper describes how the honeypot is used to capture data in layers using different techniques. The aim of the honeypot is to discover the techniques and tactics used by blackhats (hackers) to compromise computer systems. The methods used are similar to themethods used by the Honeynet Project." - Stephen Holcroft

Proof-of-Concept for Amalgamated Honeynets

Imagine having the ability to deploy an entire honeynet system on a single machine, complete with data control and data capture. The focus of this paper outlines a proof of concept that such a system is possible. Design and configuration of the system is provided, along with discussion of other potential solutions.