Mailinglist Archive

Inside the Hacker's Profiling Project
Friday November 03, 2006 (03:01 PM GMT)
By: Federico Biancuzzi

Imagine being able to preview an attacker's next move based on the
traces left on compromised machines. That's the aim of the Hacker's
Profiling Project (HPP), an open methodology that hopes to enable
analysts to work on the data (logs, rootkits, and any code) left by
intruders from a different point of view, providing them with a
profiling methodology that will identify the kind of attacker and
therefore his modus operandi and potential targets.

http://software.newsforge.com/software/06/10/30/155251.shtml