Hackin9

First, INetSim is a software suite for simulating common internet services in a lab environment, e.g. for analyzing the network behavior of unknown malware samples.[1] There are several popular honeypot out there (Kippo, Honeyd, etc) but I wanted something simple and lightweight and decided to use INetSim to capture some of the traffic hitting my network on a regular basis.

The first step is to check the requirements for INetSim which might require some Perl packages if your installation doesn https://nmap.org/book/nse.html) WinHttp.WinHttpRequest.5)
User-Agent: masscan/1.0 (https://github.com/robertdavidgraham/masscan)
User-Agent: ZmEu
User-Agent: netscan
User-Agent: Go http package
User-Agent: shellshock-scan
User-Agent: CSS Certificate Spider (http://www.css-security.com/certificatespider/)
User-Agent: Netcraft SSL Server Survey - contact [email protected]

[1] http://www.inetsim.org/index.html
[2] http://www.inetsim.org/requirements.html
[3] http://www.inetsim.org/downloads.html
[4] https://github.com/FEDEVEL/imx6rex-linux-3.10.17/blob/master/Documentation/ABI/removed/ip_queue

-----------
Guy Bruneau IPSS Inc.
Twitter: GuyBruneau
gbruneau at isc dot sans dot edu

(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.
 

[session] Regaining Control of Storage Performance By @SecurityFirstCo | @CloudExpo #Cloud
SYS-CON Media (press release)
Don has been involved in the information security and networked storage industry for over 25 years. Before joining Security First Corp., he was the CTO at EMC Federal where he led teams of engineers in designing and implementing network architectures ...

and more »
 

Anonymous Wages DDoS Attacks On Banks Worldwide
Dark Reading
Banks across the globe have become the target of distributed denial-of-service (DDoS) attacks launched by the hacktivist group Anonymous as part of its so-called "Operation Icarus" campaign. In a May 4 video, the group warned financial bodies around ...

 
Internet Storm Center Infocon Status