HoneyDB is excited to release a new payload-history endpoint to HoneyDB’s Threat Information API. This new API endpoint provides access to historical payload data going back to 2014. The data behind this endpoint has been distilled down to key attributes from honeypot interactions. Examples of this data include commands issued…

In recent years many cybersecurity professionals have become more familiar with cyber deception as this space continues to mature. There are also those security professionals that may have heard of it but are not familiar with what it is in a practical sense. If you do a search on cyber…

Anyone can have a bad day. Take for example, in professional baseball, the league’s top-performing pitcher. This pitcher could be unhittable for most of the season, but then have a single game where he just can’t find the strike zone or the opposing team is hitting and scoring with ease…

The HoneyDB project continues to evolve to make it easier for developers, security researchers, and network defenders to deploy honeypots on the Internet. As a new step forward in this evolution, I’m happy to announce the HoneyDB Agent is available as a 1-Click deployment in the DigitalOcean Marketplace! …

With Internet exposed web applications prompt mitigation of CVE (Common Vulnerabilities and Exposures) is critical. When a new CVE has been announced the response drill is all too familiar to InfoSec teams. First, evaluate the details of the CVE to determine if any of their applications are impacted. In many…

We do a lot to protect our homes. After all, the home is meant to be our safe place, where we can find comfort and have privacy. To protect our safe place we have fences, locks on doors, alarm systems with sensors, surveillance cameras, and even video doorbells. Oh, and…

In early Fall of 2018, I drafted a cybersecurity predictions article for 2019, which was published by DARK Reading. Since drafting the article I have seen various reports of incidents that confirmed some of the items I talked about. While we are still only just getting started in 2019, I…

Does malware analysis peak your interest? Are you looking for sources of malware for research, or just to practice your craft? Honeypots are a great way to identify sources of malware. There are numerous honeypots available that will help you find or even capture malware samples. However, in this post…

Dear RASP, It is finally time for me to write you this letter. When we first met you were something new and exciting. I had never seen anything in application security (AppSec) like you before. You were a different and promising solution to mitigate the risks we all worry about…