Skip to main content

Introducing new learning courses and educational videos from Apress. Start watching

  • Book
  • © 2005

Honeypots for Windows

Apress

Authors:

Buying options

eBook
USD 29.99
Price excludes VAT (USA)
  • ISBN: 978-1-4302-0007-9
  • Instant PDF download
  • Readable on all devices
  • Own it forever
  • Exclusive offer for individuals only
  • Tax calculation will be finalised during checkout
Softcover Book
USD 39.99
Price excludes VAT (USA)

This is a preview of subscription content, access via your institution.

Table of contents (12 chapters)

  1. Front Matter

    Pages i-xxv
  2. Honeypots in General

    1. Front Matter

      Pages 1-1
  3. Windows Honeypots

    1. Front Matter

      Pages 61-61
    2. Honeyd Installation

      Pages 121-149
    3. Honeyd Configuration

      Pages 151-166
    4. Honeyd Service Scripts

      Pages 167-188
  4. Honeypot Operations

    1. Front Matter

      Pages 221-221
    2. Network Traffic Analysis

      Pages 223-268
    3. Honeypot Monitoring

      Pages 269-300
    4. Honeypot Data Analysis

      Pages 301-336
    5. Malware Code Analysis

      Pages 337-361
  5. Back Matter

    Pages 363-392

About this book

Installing a honeypot inside your network as an early warning system can significantly improve your security. Currently, almost every book and resource about honeypots comes from a Unix background, which leaves Windows administrators still grasping for help. But Honeypots for Windows is a forensic journeyhelping you set up the physical layer, design your honeypot, and perform malware code analysis.

You'll discover which Windows ports need to be open on your honeypot to fool those malicious hackers, and you'll learn about numerous open source tools imported from the Unix world. Install a honeypot on your DMZ or at home and watch the exploits roll in! Your honeypot will capture waves of automated exploits, and youll learn how to defend the computer assets under your control.

Keywords

  • Deployment
  • Open Source
  • Windows
  • design
  • modeling
  • security

About the author

Roger A. Grimes (CPA, CISSP, MCSE: Security (NT/2000/2003/MVP), CEH, TICSA, Security+, MCT) is a Windows security consultant, instructor, and author. This is Grimes' third book and he has written over a 150 articles for magazines like Windows IT Pro, Microsoft Certified Professional, InfoWorld, Network Magazine, Windows & .NET, and Security Administrator. He is a contributing editor for Windows & .NET, and InfoWorld magazines. Grimes has presented at Windows Connections, MCP TechMentors, and SANS. He was recognized as "Most Valuable Professional" (MVP) by Microsoft, for Windows Server 2003 security. Grimes also writes frequently for Microsoft, including material for two courses on advanced Windows security and Technet. He has taught security to many of the world's largest and most respected organizations, including Microsoft, VeriSign, the U.S. Navy, various universities, and public school systems. Grimes spends his time surrounded by the maddening hum of twelve 1U servers in his home office, monitoring his personal honeypots.

Bibliographic Information

Buying options

eBook
USD 29.99
Price excludes VAT (USA)
  • ISBN: 978-1-4302-0007-9
  • Instant PDF download
  • Readable on all devices
  • Own it forever
  • Exclusive offer for individuals only
  • Tax calculation will be finalised during checkout
Softcover Book
USD 39.99
Price excludes VAT (USA)