«
»

disknyp 3

disknyp doesn’t seem to be a new thing..

In the paper:

 

141
PATTERNS AND PATTER  AN INVESTIGATION INTO  SSH ACTIVITY USINGKIPPO HONEYPOTS
CraigValli,PriyaRabadiaandAndrewWoodward
EdithCowanUniversity,Security
ResearchInstitute
Perth,Australia

c.valli@ecu.edu.au,prabadia@our.ecu.edu.au,a.woodward@ecu.edu.a

 

(to be found at http://ro.ecu.edu.au/cgi/viewcontent.cgi?article=1126&context=adf ) the download URL is already mentioned. Also clean-mx knows the file host; and on http://honey1.christiaan008.tk:8080/kippo-graph/kippo-input.php there is also a good look at these activities.

Tags:

This entry was posted on Monday, December 16th, 2013 at 10:04 and is filed under Honeypots. You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site.

2 Responses to “disknyp 3”

  1. futex says:
    27. December 2013 at 13:05

    Hello, i had receive this attack on my kippo honeypot too, and reverse it, take a look: http://remchp.com/blog/?p=52

    If you have comment, dont hesitate 🙂

  2. Dario R. says:
    21. December 2013 at 20:06

    I got the same thing on my Honeypot multiple times, i would love to know what it does.

Leave a Reply

You must be logged in to post a comment.