{"id":9624,"date":"2013-03-26T21:35:03","date_gmt":"2013-03-27T02:35:03","guid":{"rendered":"http:\/\/bucktownbell.com\/?p=9624"},"modified":"2013-03-26T21:35:03","modified_gmt":"2013-03-27T02:35:03","slug":"honeypot-stings-attackers-with-counterattacks","status":"publish","type":"post","link":"http:\/\/bucktownbell.com\/?p=9624","title":{"rendered":"Honeypot Stings Attackers With Counterattacks"},"content":{"rendered":"<blockquote><p>The PHP portion included a field for &#8220;members&#8221; to enter their &#8220;secret code&#8221; to enter the &#8220;private zone,&#8221; he explains. &#8220;So it&#8217;s a good idea to try a SQL injection attack&#8221; there, he says of the lure.<\/p>\n<p>&#8220;My script had [a] few checks for some patterns, and when a SQL injection attempt was detected, the script [threw the] Java applet, &#8216;GUI for member zona. Welcome,'&#8221; he says. The Java applet then installed a backdoor on the attacker&#8217;s Windows machine, he says.<\/p><\/blockquote>\n<p>via <a href=\"http:\/\/www.darkreading.com\/threat-intelligence\/167901121\/security\/attacks-breaches\/240151740\/honeypot-stings-attackers-with-counterattacks.html\">Honeypot Stings Attackers With Counterattacks &#8211; Dark Reading<\/a>.<\/p>\n<blockquote><p>In his <a href=\"https:\/\/media.blackhat.com\/eu-13\/briefings\/Sintsov\/bh-eu-13-honeypot-sintsov-wp.pdf\" target=\"new\">research paper<\/a> (PDF) on the experiment, Sintsov explains it this way: &#8220;Obviously, reverse penetration has a number of moral, ethical and legal issues<\/p><\/blockquote>\n","protected":false},"excerpt":{"rendered":"<p>The PHP portion included a field for &#8220;members&#8221; to enter their &#8220;secret code&#8221; to enter the &#8220;private zone,&#8221; he explains. &#8220;So it&#8217;s a good idea to try a SQL injection attack&#8221; there, he says of the lure. &#8220;My script had &hellip; <a href=\"http:\/\/bucktownbell.com\/?p=9624\">Continue reading <span class=\"meta-nav\">&rarr;<\/span><\/a><\/p>\n","protected":false},"author":2,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[284],"tags":[1083,915,1084,44],"class_list":["post-9624","post","type-post","status-publish","format-standard","hentry","category-servers","tag-counterattacks","tag-honeypot","tag-sql-injection","tag-web-servers"],"_links":{"self":[{"href":"http:\/\/bucktownbell.com\/index.php?rest_route=\/wp\/v2\/posts\/9624","targetHints":{"allow":["GET"]}}],"collection":[{"href":"http:\/\/bucktownbell.com\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"http:\/\/bucktownbell.com\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"http:\/\/bucktownbell.com\/index.php?rest_route=\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"http:\/\/bucktownbell.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=9624"}],"version-history":[{"count":0,"href":"http:\/\/bucktownbell.com\/index.php?rest_route=\/wp\/v2\/posts\/9624\/revisions"}],"wp:attachment":[{"href":"http:\/\/bucktownbell.com\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=9624"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"http:\/\/bucktownbell.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=9624"},{"taxonomy":"post_tag","embeddable":true,"href":"http:\/\/bucktownbell.com\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=9624"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}