DOE Lab Releases Open Source Attack Intelligence Tool
Apr 18, 2012, 12:02 (0 Talkback[s])
(Other stories by Kelly Jackson Higgins)
"The so-called Hone tool is basically a host-based sensor that
automatically pinpoints which applications or processes infected
machines and an external network are using to communicate. So it
could help determine the specific app used between a bot and its
command and control, or between an infected machine and the
attacker trying to siphon information or intellectual property.
"PNNL, which was the victim of consecutive targeted attacks last
summer, is test-running Hone along with its homegrown visualization
technology. The open-source Hone code is available to the public,
and its creator Glenn Fink hopes the community will then share any
extensions to the tool as well in the public domain. It's currently
available for Linux, and the lab is also working on Windows 7 and
Mac OS X versions as well. "
Complete Story
Related Stories:
- Wikileaks moves to Amazon's cloud to evade massive DDoS(Dec 01, 2010)
- Symantec Study Mischaracterizes Linux Spam(May 10, 2010)
- Linux Takes a Share of Spam from Windows(Apr 27, 2010)
- Report: Malware capital of the world is Shaoxing, China(Mar 30, 2010)
- Widespread attacks exploit newly patched IE bug(Jan 23, 2010)
- Cyber war is coming, the impact could be huge(Nov 09, 2009)
- CIA gets open source for enterprise search(Jun 19, 2009)
- China installs a secure operating system on all military PCs(May 15, 2009)
- Electricity Grid in U.S. Penetrated By Spies(Apr 09, 2009)
