Discover this podcast and so much more

Podcasts are free to enjoy without a subscription. We also offer ebooks, audiobooks, and so much more from just $11.99/month.

Tech Segment: Honeyports - Episode 340

UNLIMITED

Tech Segment: Honeyports - Episode 340

FromSecurity Weekly Podcast Network (Video)


UNLIMITED

Tech Segment: Honeyports - Episode 340

FromSecurity Weekly Podcast Network (Video)

ratings:
Length:
13 minutes
Released:
Aug 13, 2013
Format:
Podcast episode

Description




If you've seen one of mine, or John Strand's, presentations on offensive countermeasures, you know about Honeyports. If you've taken our class or read our book, you've seen this too! Just to recap: If you tell your host to listen for connections on a port, and make certain the client is making a full TCP connection, you can "shun" or block the remote IP address. A Honeyport is a port that nothing should be listening on. When something, or someone, makes a connection to this port, you create and implement a local firewall rule on the host to block that IP address. Previously we had shell scripts and a Windows command to make this happen. I wanted to extend this functionality, but quickly ran into limitations. So, I decided to write a Python script to implement this on all 3 platforms.
Released:
Aug 13, 2013
Format:
Podcast episode

Titles in the series (100)

Security news, interviews, how-to technical segments. For security professionals by security professionals. We Hack Naked.