Neat thats great, this will be a huge help 
I been making some good progress with my honeypot and feel I should write down the progress Iâve made so far so that it isnât just in my head. The plan is to have the device as a home storage server and as of right now I have two separate identities that user the device to store files and am in the process of building up their storage to make it look believable. The share I have setup is on the user âuserâ with a password of âpasswordâ. I am not sure whether to change this to something less generic. I have looked up common usernames used to brute force ssh but canât find any that would make sense for the device and still provide a fairly good hit rate.
I have also taken some steps to hide my presence on the server by modifying who, w, last, and users in bashrc to omit the root user from the output but still function as otherwise intended. This seems to be working well but any ideas on how to better cover my tracks would be welcome. On the monitoring side I have wrote a script that will look for new entries in /dev/pts and run peekfd to display the output of the attacker shell. This is still not perfect and script doesnât always work but can still run the command manually if I need to.
On networking I have assigned the device to a completely isolated VLAN which is blocked from everything but the internet which is also tunneled through a VPN to mask my IP address and have also mirrored the port for the device so I can preform packet capture with Wireshark.
I am now at the stage where I am almost ready to deploy but I still have one major issue left to solve, I for obvious reasons donât want the attacker to connect to the honeypot using my public ip address and need a good way to mask it but still allow them to connect inbound. My two options are to either change my public ip address which is easy but problematic or tunnel it though OpenVPN from a VPS server. I am leaning towards the latter but it may take a while to setup and need to find a good provider for it first.
Thoughts, suggestions?
doesnt amazon have free server? might be able to use that.
if not cloudatcost might be a good option during the 90% off sale
Amazon does but have already used the trial before so not sure if itâll work now. cloudatcost is a good option though but will have to wait for the sale, which might not be such a bad idea. Iâll at least give me some time to figure this all out.
Hiii
At work woo
Anyone have anything interesting going on?
I for one have a couple of keyboards to tear down and document, among other things.
Also deciding whether or not to buy Wolfenstein II⌠HmmâŚ
im working on my linux on android project
Have been working on my honeypot but its kinda on hold right now until I can sort some stuff out. Other than that am also Iâm attempting to build EFIDroid for my G5.
Doing something with the Unreal Engine. More in December. Also wonât take away time from my rewrite.
Not sure how to feel about this tbh
http://www.eurogamer.net/articles/2017-11-03-blizzard-is-officially-doing-classic-vanilla-legacy-world-of-warcraft-servers
That being said if it is a thing I might get it and play it with my grandpa as he played the game when it was new so. Will see.
It is kinda of interesting. I never got into World of Warcraft. I mean hey if Blizzard can make money and fans get what they wanted then it could be good.
Wait and see.
In other news CoD WWII is quite bad, surprising no-one 
Definitely getting Wolfenstein II as my only full retail price game in recent history. Because its worth it for me.
Now to wait until I actually can get it lol, Probably in a couple weeks.
Also my Russian keyboard that came from Kiev is finally in the US, so that should be arriving soonish as well as my adapter to use the Apple Extended II on USB. So will be able to test both of them out and see what they are like.
The Lootbox situation for CoD WWII mulitplayer is well:
Short version: Everyone can see what you got from your loot box. Which Activision hopes will manipulate you to buy more.
wooo
On top of the laughable historical âaccuracyâ they add that to loot boxes⌠RIP
Meanwhile from what I can tell Wolfenstein II is one of the best FPS games for a long time.
Still havent gotten it yet but I plan to when I can.
So this is a thing now
yep. I wonder what is going to happen with the AMD APUâs now
Iâm not sure.
Iâd personally be more excited for a desktop Ryzen and ⌠Some version of Vega for mobile to be a thing though than an APU.
Maybe next gen ultrabooks will be interesting for once with these Intel + AMD things lol
a vega based apu that sits at around 45W- 65W would be insane.
That would be great. Would even consider using a vega apu on the desktop if the performance was there. I sense that Zen2 APUs are going to be insane would be perfect for Linux machines. Right now I canât wait to see vega APUs are like in more traditional laptop form factors instead of just ultrabooks.