Search Quality & Cyber-Intelligence Lab (SQ-CIL)

Spam Double-Funnel: Connecting Web Spammers with Advertisers



 

• Strider HoneyMonkey is a Microsoft Research project to detect and analyze Web sites hosting malicious code. The intent is to help stop attacks that use Web servers to exploit unpatched browser vulnerabilities and install malware on the PCs of unsuspecting users. Such attacks have become one of the most vexing issues confronting Internet security experts. Strider HoneyMonkey is a project of the Cybersecurity and Systems Management group in Microsoft Research.
  • Understanding HoneyMonkey
    
    
  • NDSS 2006 paper on Strider HoneyMonkeys
    
    
  • MSR Cybersecurity and Systems Management Group
    
    
• See Academic Publications
  
  
• Academic Presentations
  • Automated Web Patrol with Strider HoneyMonkeys: Finding Web Sites That Exploit Browser Vulnerabilities, Trust and Security Seminars, Information Trust Institute (ITI), University of Illinois at Urbana-Champaingn, October 19, 2005
    
    
  • Strider HoneyMonkeys: Active Client-Side Honeypots for Finding Web Sites That Exploit Browser Vulnerabilities, Usenix Security Work-in-progress Presentation, Aug. 5, 2005
    
    
  • Automated Web Patrol with Strider HoneyMonkeys, IEEE SSP Work-in-progress Presentation, May 9, 2005
    
    
• News Articles
  • Bill Cheswick's comment on HoneyMonkeys, Security Focus, 2006
    
    
  • Slashdot posting, August 12, 2005
    
    
  • Microsoft's 'HoneyMonkey' effort could presage URL filtering bid," ComputerWorld, August 11, 2005
    
    
  • "New Microsoft security system scours Web," ComputerWorld, August 10, 2005
    
    
  • "Microsoft's "monkeys" find first zero-day exploit," SecurityFocus News, August 8, 2005; or "Flies swarm around MS Honeymonkey," TheRegister, August 9, 2005.
    
    
  • "Microsoft's HoneyMonkeys Show Patching Windows Works," TechWeb News / InformationWeek, August 8, 2005
    
    
  • "Microsoft Unwraps HoneyMonkey Detection Project," eWeek.com, August 5, 2005
    
    
  • "Strider HoneyMonkey: Trawling for Windows Exploits," eWeek.com, May 19, 2005
    
    
  • Slashdot posting, May 18, 2005
    
    
  • "Microsoft looks to "monkeys" to find Web threats," SecurityFocus News, May 17, 2005; or "Microsoft hunts web nasties with honey monkeys," The Register, May 17, 2005.
    
    
• Other Related Strider Cybersecurity Projects
  • Strider Gatekeeper Spyware Detection
    
    
  • Strider GhostBuster Rootkit Detection
    
    
• Other Related Security Projects
  • Ashlesha Joshi, Samuel T. King, George W. Dunlap, Peter M. Chen, "Detecting Past and Present Intrusions Through Vulnerability-Specific Predicates," to appear in Proc. 20th ACM SOSP, 2005.
    
    
  • "A Crawler-based Study of Spyware on the Web," in Proc. NDSS 2006.
    
    
• Other Links
  • The Other Honey Monkey
    
    
  • Helping Hands: Monkey Helpers for the Disabled
    
    
  • National Wildlife Federation