Honeynet Project Overview

Julia ChengDirector, Honeynet Board of Directors

Julia.yc.cheng@gmail.com

Who is the Honeynet Project?

• US-based non-profit (501c3) computer

security research organization

• Founded in 2000 by Lance Spitzner

• Global membership of volunteers with

diverse skills and experiences

Who is the Honeynet Project?

(Cont.)

• Partially funded by sponsors

• We are not selling our products or service

• All we produce is open source and freely

available.

Who is the Honeynet Project?

(Cont.)

• Mission: ¨Learn the tools, tactics and motives involved

in computer and network attacks, and share

the lessons learned¨

• Goal: Improve security of the InternetThe Honeynet Project is a platform that

brings together security researchers and

likeminded people to accomplish this goal.

Contributors

Structure

Chapters

Full Members

43 International Chapters

187 Contributor

55 Full Members

Contributors

Structure

Board of

Directors

Chapters

Full Members

elect

Committees

Julia Cheng, National Cheng Kung University

Thorsten Holz, Ruhr-University Bochum

Jose Nazario, Arbor Networks

Lance Spitzner, SANS Institute

Christian Seifert, Microsoft Bing

David Watson, Isotoma Ltd.

Tillmann Werner, Kaspersky Labs

Contributors

Structure

Board of

Directors

Officers

Chapters

Full

Members

elect appoint

Committees

Guillaume Arcas, CPRO, Security Warrior

Consulting

Dave Dittrich, CLEO, University of Washington

Max Kilger, CMO, Experian Simmons

Christian Seifert, CEO, Microsoft Bing

Faiz Shuja, CIO, Cyber Internet Services (Pvt) Ltd

Sebastien Tricaud, CTO, Picviz Labs

David Watson, CRO, Isotoma Ltd.

Contributors

Structure

Board of

Directors

Officers

Chapters

Full Members

elect appoint

Committeesform

What do we do? Awareness

• Raise awareness of the threats that exist

• Honeynet Project Blog/ Twitter feed/ Social

Media Groups

• KYE/KYT whitepaper series

• Google Summer of Code

http://www.honeynet.org/papers

Google Summer of Codeall for the love of code

• Global program that

offers student

developers stipends to

write code for various

open source software

projects

Google Summer of Codeall for the love of code

http://www.honeynet.org/gsoc/slots

What do we do? Information

• For those already aware, teach and

inform about latest threats

• Speaking engagements at conferences/

workshops and at invitation-only events

• Public Honeynet Project Security Workshop

• Forensic Challenges

• Capture-the-flag events

Annual Workshop (Paris 2011)

http://www.honeynet.org/challenges

What do we do? Research

• Give organizations the capabilities to

learn more on their own

• Develop and deploy honeypot and security

technology

• Release developed tools under open source

license freely on the web

• Study captured data in the wild with sensors

around the world

http://www.honeynet.org/project

Recently Research &

Activities

• Hpfeed: Live data feed sharing within the

Honeynet Project and also with external

parties.

• Data visualization on big data and diverse

sources of data

• Android malware static and dynamic analysis

• Low-interaction client honeypot

2012 The Honeynet Project

Security Workshop

@ Facebook Headquarters

2012/03/19 ~ 2012/03/20

San Francisco, CA USA

How to Get Involved ?

• Open to anyone

• University students and professors, professionals,

enthusiastic individuals

• Become involved

• Find a local chapter (E.g. Taiwan Honeynet Chapter)

• Contact organization directly, become affiliated

• For students: GSoC – http://code.google.com/soc/

Where are we?

• Contact of follow us:• Blog at http://www.honeynet.org

• An official Project Twitter feed @projecthoneynet

• Facebook group 'The Honeynet Project'

• LinkedIn group 'The Honeynet Project'

• “Old school” public mailing list, still at SecurityFocus

• #honeynet-project on irc.freenode.net (new, general

public enquiries)

Q & A

Julia ChengDirector, Honeynet Board of Directors