We found a match
Your institution may have access to this item. Find your institution then sign in to continue.
- Title
NETWORK PROBE PATTERNS AGAINST A HONEYNET IN MALAYSIA.
- Authors
Memari, Nogol; Hashim, Shaiful Jahari; Samsudin, Khairulmizam
- Abstract
In this paper, a honeynet is deployed with the help of container based virtualisation technology to gain comprehensive information on the actions against the network. The honeynet is deployed using a University Putra Malaysia (UPM) specific internet protocol (IP) address to attract attention from internet users and network data is then gathered from the scans performed on the honeynet for a period of two weeks. The data is then analysed to determine the patterns of activity based on port scans, Secure Shell (SSH) connection attempts and the variety of operating systems where the attacks initiated from. Windows XP was found to be the primary choice for infection by the hackers as Microsoft stopped issuing security updates for this particular platform, while Linux systems are less infected due to frequent security upgrades. Interestingly, US and Russian based IP addresses poked the SSH server the most, followed by Malaysian IP addresses.
- Subjects
COMPUTER network security; INTERNET protocols; COMPUTER network resources; MICROSOFT Windows (Operating system); MICROSOFT operating systems
- Publication
Defence S&T Technical Bulletin, 2015, Vol 8, Issue 1, p63
- ISSN
1985-6571
- Publication type
Article