Added VM Hardening Guide
VMware has certainly improved its online resources for securing their product infrastructure, including high level explanations, white papers, and finally technical guides. However, VMware has yet to provide a central, definitive guide on what users can do to harden individual VMs by modifying the VM configuration file. Instead, users have to jump through various knowledge base articles and community posts to obtain them. As such, I've created a VM Hardening Guide which distills these settings that were published by VMware as well as by third party sources.
1.0.2 Released
Version 1.0.2 of the HoneyClient code has been released. New packages have been posted to the download page. You can also checkout the source code.
This release includes the following changes:
- Real-time integrity checking (via a modified version of Capture-HPC)
- Drone database / web service support - a Ruby on Rails application to keep track of malware and centralize URL processing across different honeyclients
(...)
Excellent articles on malicious webservers
Due to me not having posted in quite some time, I haven't mentioned this before, but back in August the Honeynet Project posted an excellent article about their findings related to searching for malicious webpages. Well, now they have released a followup article which deals specifically with the software used at some of these sites, which gives attackers rather advanced capability with very little difficulty. These are important reads to fully understand and appreciate the state of the art in browser-attacks.
Updated on 11/08/07 09:24:20
