Title: | HoneyNet: A platform for studying Hacker Behaviors and Computer Forensics |
Date: | 28th February 2003 |
Time: | 17:30 - 19:00 |
Venue: | SHB 508 |
Speaker: | Alan S. H. Lam |
Target Audiences: | All are welcome |
Abstract:
This seminar presents the use of a HoneyNet as a vehicle for
computer Forensics. A Honeypot is an Internet-attached server designed
to detect and monitor the activities of computer hackers while
HoneyNet is a network of these honeypots. A HoneyNet I have deployed
since June 2002 that enables one to identify specific procedures employed
by hackers and to implement measures to track hackers will be presented.
Hackerˇ¦s activities will be described and illustrated with live
demonstrations through scene reconstruction. Forensic techniques
used to examine the data obtained from HoneyNet will also be discussed.
Attendees interested in further involvement will be provided with a
forensic challenge and a proposal for establishing a computer forensic
laboratory will be presented.
Seminar Outline:
Presentation Slides ([PPT|PDF])