The Experiment – Part 3 – Hackers Exposed
I’ve now been running my honeypot for some period of time and while i’m not sure what conclusions you can draw from the results, I can certainly say they are interesting. Over the course of the next week, i’m going to be posting the results of the analysis of the log files and hacker tracking system that I installed for the purpose of this experiment. I’ll include summaries of the types of attacks (see chart below), countries of origin, persistence (how many attempts were made by a single hacker), and hacker CQ (cleverness quotient). The CQ is a measure of both the methods and types of attacks by a single hacker including analysis of probes, whether they attempted to cover their tracks using a proxy and whether they actually did cover their tracks by using an anonymous proxy.
More to come…