Comments for Norwegian Honeynet Project http://www.honeynor.no A chapter of the Honeynet Project Thu, 28 Jan 2010 04:08:56 +0000 http://wordpress.org/?v=2.9.2 hourly 1 Comment on Malware unpacking in OllyDbg by Malware unpacking in OllyDbg « 0day in {REA_TEAM} http://www.honeynor.no/2008/03/26/malware-unpacking-in-ollydbg/comment-page-1/#comment-272 Malware unpacking in OllyDbg « 0day in {REA_TEAM} Thu, 28 Jan 2010 04:08:56 +0000 http://www.honeynor.no/index.php/2008/03/26/malware-unpacking-in-ollydbg/#comment-272 [...] Norwegian Honeynet Project » Blog Archive » Malware unpacking in OllyDbg.   Leave a [...] [...] Norwegian Honeynet Project » Blog Archive » Malware unpacking in OllyDbg.   Leave a [...]

]]> Comment on Analysing malicious PDF documents and shellcode by Analysing malicious PDF documents and shellcode « 0day in {REA_TEAM} http://www.honeynor.no/2008/08/24/analysing-malicious-pdf-documents-and-shellcode/comment-page-1/#comment-271 Analysing malicious PDF documents and shellcode « 0day in {REA_TEAM} Thu, 28 Jan 2010 04:02:44 +0000 http://www.honeynor.no/?p=41#comment-271 [...] Norwegian Honeynet Project » Blog Archive » Analysing malicious PDF documents and shellcode.   Leave a [...] [...] Norwegian Honeynet Project » Blog Archive » Analysing malicious PDF documents and shellcode.   Leave a [...]

]]> Comment on VoIP attacks are escalating by VOIP Scanning and Attacks on the Increase | Vocati Communications, Inc. http://www.honeynor.no/2008/10/19/voip-attacks-are-escalating/comment-page-1/#comment-205 VOIP Scanning and Attacks on the Increase | Vocati Communications, Inc. Mon, 09 Nov 2009 01:10:47 +0000 http://www.honeynor.no/?p=63#comment-205 [...] VoIP scanning traffic. Arbor Networks mentioned VoIP attacks as one of their increasing concerns. A Norwegian honeynet detected various INVITE requests trying to get VoIP systems on the internet to dial specific numbers. This [...] [...] VoIP scanning traffic. Arbor Networks mentioned VoIP attacks as one of their increasing concerns. A Norwegian honeynet detected various INVITE requests trying to get VoIP systems on the internet to dial specific numbers. This [...]

]]> Comment on Citibank UK number was target for a “lawnmower” telephone attack today! by david hiers http://www.honeynor.no/2009/09/20/citibank-uk-number-was-target-for-a-lawnmower-telephone-attack-today/comment-page-1/#comment-181 david hiers Wed, 14 Oct 2009 19:42:12 +0000 http://www.honeynor.no/?p=356#comment-181 I'll post this link to the voiceops group. I’ll post this link to the voiceops group.

]]> Comment on Country Lookup by Tor Inge Skaar http://www.honeynor.no/2009/06/19/country-lookup/comment-page-1/#comment-147 Tor Inge Skaar Sat, 26 Sep 2009 22:35:30 +0000 http://www.honeynor.no/?p=165#comment-147 Daniel, very nice! Daniel, very nice!

]]> Comment on Country Lookup by Daniel Austin MBCS http://www.honeynor.no/2009/06/19/country-lookup/comment-page-1/#comment-145 Daniel Austin MBCS Sat, 26 Sep 2009 22:05:28 +0000 http://www.honeynor.no/?p=165#comment-145 Ok, my BGP lookup tool now lists both IPv4 and IPv6 prefixes. There's no way to ask for a specific type right now, but it's simple... if you only want IPv6 prefixes, only select items that contain ":" - if you only want IPv4 prefixes, only select items that contain "." :-) Enjoy. Ok, my BGP lookup tool now lists both IPv4 and IPv6 prefixes.

There’s no way to ask for a specific type right now, but it’s simple… if you only want IPv6 prefixes, only select items that contain “:” – if you only want IPv4 prefixes, only select items that contain “.” :-)

Enjoy.

]]> Comment on Country Lookup by Daniel Austin MBCS http://www.honeynor.no/2009/06/19/country-lookup/comment-page-1/#comment-128 Daniel Austin MBCS Fri, 25 Sep 2009 08:28:46 +0000 http://www.honeynor.no/?p=165#comment-128 I will see if I can obtain some IPv6 BGP feeds, and modify my bgplookup tool to include IPv6 too. Give me a couple of weeks :-) I will see if I can obtain some IPv6 BGP feeds, and modify my bgplookup tool to include IPv6 too.

Give me a couple of weeks :-)

]]> Comment on Citibank UK number was target for a “lawnmower” telephone attack today! by Shueib http://www.honeynor.no/2009/09/20/citibank-uk-number-was-target-for-a-lawnmower-telephone-attack-today/comment-page-1/#comment-121 Shueib Thu, 24 Sep 2009 01:27:54 +0000 http://www.honeynor.no/?p=356#comment-121 I think the attacker was testing this attack and that is why he choose an odd time like Sunday 5 am so that he would get noticed and then if the attack is successful, then he may intend to try out this on a larger scale on any working day. Yes, This is bad and major Voip applicance vendors should get this fixed. I think the attacker was testing this attack and that is why he choose an odd time like Sunday 5 am so that he would get noticed and then if the attack is successful, then he may intend to try out this on a larger scale on any working day.

Yes, This is bad and major Voip applicance vendors should get this fixed.

]]> Comment on Using Nmap to scan for Conficker by Tor Inge Skaar http://www.honeynor.no/2009/03/31/using-nmap-to-scan-for-conficker/comment-page-1/#comment-43 Tor Inge Skaar Sun, 19 Jul 2009 18:22:22 +0000 http://www.honeynor.no/?p=136#comment-43 Indeed! And now <a href="http://nmap.org/5/" rel="nofollow">Nmap 5</a> has been released, with a huge number of improvements, bug fixes and new features (the conficker script remains naturally included). Indeed! And now Nmap 5 has been released, with a huge number of improvements, bug fixes and new features (the conficker script remains naturally included).

]]> Comment on Using Nmap to scan for Conficker by Vinoth http://www.honeynor.no/2009/03/31/using-nmap-to-scan-for-conficker/comment-page-1/#comment-42 Vinoth Sun, 19 Jul 2009 15:38:25 +0000 http://www.honeynor.no/?p=136#comment-42 I use NMAP for many troubleshooting purpose. This feature is awesome. Thanks to Fyodor:-) I use NMAP for many troubleshooting purpose. This feature is awesome. Thanks to Fyodor:-)

]]>