The Spanish Honeynet Project is a non-profit research organization of security professionals dedicated to information security. We have no products, services or employees, and our research is done on a volunteer basis. It is our goal to learn the tools, tactics, and motives of the blackhat community and share these lessons learned. It is hoped that our research will benefit both its members and the security community. All of our work is OpenSource and shared with the security community.
Our intend is to support the security community in any of the following ways:
To raise awareness of the threats and vulnerabilities that exists in the Internet today. We raise awareness by both demonstrating the vulnerability of real systems in the wild through the use of honeypots and by publicizing our investigations (and that of the Honeynet Project as a whole) through conferences and talks to Spanish-speaking technical audiences. The project members have participated in the FIST Conferences, and in technical courses in some of Spain’s universities (ETSIT-UPM, and UCLM).
Other valuable means for raising awareness includes developing “Forensic Challenges”. The project members have participated in the organization of the Spanish Forensic Challenges in cooperation with other institutions interested in honeypots and forensics such as RedIris, and have also organized the Scan of the Month Challenge #32 of the Honeynet Project.
Teach and Inform
For those in the community who are already aware and concerned, we hope to give you the information to better secure and defend your resources. Historically, intelligence about attackers has been limited to the tools they use. The Spanish Honeynet Project intends on providing additional interesting information. For example, their motives in attacking, how they communicate, when they attack systems and their actions after compromising a system.
The Spanish Honeynet Project is committed to providing information in two ways: either through whitepapers developed by the members of the project after the investigation of our honeypots or through the translation to Spanish of content provided by other members of the Honeynet Alliance. The Spanish Honeynet Project has already translated most of the content of previous investigation and has coordinated it, within the framework of the Honeynets in Spanish project.
The Spanish Honeynet Project will also provide up-to-date information to Spanish most recognized technical magazines in the security arena, and will publish its findings through them to inform security professionals of its findings.
The Spanish Honeynet Project will help other interested organizations, such as technical universities, in developing their own ability to research threats or adversaries. It will also establish contact with IT security research departments in Spanish universities and other government organizations in order to deploy and maintain honeynet works outside the Project’s own network. This will provide additional information that will be analyzed by the project. Specific contacts will also be introduced with some technical organizations including Red.es (Antivirus alert network) and the AUI (Pepi-II Anti-Spam campaign) when researching service-oriented honeypots.
Honeynet Research Alliance
The Spanish Honeynet Project is part of the Honeynet Research Alliance, a trusted forum of other Honeynet research organizations. Member organizations of the Honeynet Research Alliance are not part of The Honeynet Project. Instead, they are their own independent entities. These organizations subscribe to the Alliance for the purpose of researching, developing and deploying honeynets and sharing the lessons learned. The goal of the Alliance is to bring together organizations actively involved in Honeynet research.
- Any software developed by the Spanish Honeynet Project is OpenSource and falls under the Revised BSD License. Any other software is at a minimum OpenSource.
- The Spanish Honeynet Project makes no warranties about the concepts or content discussed in his papers.
- The Spanish Honeynet Project makes no warranties, nor can it be held responsibe for damages caused by any tools on this website.