UNDERSTANDING THE SKILL LEVEL OF ATTACKERS THROUGH THE DEPLOYMENT OF VIRTUAL HONEYNET
G.Rajarajan 1, L. Ganesan 2
1 Research Scholar Faculty of Information and Communication Engg, Anna University Chennai , Tamil Nadu ,India.
2 Professor&Head Department of Computer Science and Engg ,A.C. College of Engineering & Technology, Karaikudi, TamilNadu ,India.
Malware in the form of computer viruses, worms, trojan horses, rootkits, and spyware acts as a major threat to the security of networks and creates significant security risks to the organizations. In order to protect the networked systems against these kinds of threats and try to find methods to stop at least some part of them, we must learn more about their behavior, and also methods and tactics of the attackers, which attack our networks.This paper makes a practical analysis of observed attacks and exploited vulnerabilities using honeypots in an organization network. Based on this, we study the attackers’ behavior and in particular the skill level of the attackers once they gain access to the honeypot systems. The first part of the work describes: the honeypot architecture as well as implementation details so that we can observe the attackers behavior. The second part presents: the detailed analysis and classification of the attacks and vulnerabilities, which are used by the attackers and the attackers’ skill level based on the exploited vulnerabilities.
