- Bell Aliant
- NHTCU & FBI
- Peter Allor
- Marcel van den Berg
- Rainer Böhme
- Bob Burls
- William Cheswick
- Carlos Cid
- Anton Chuvakin
- Dave De Coster
- Lord Errol
- Boris Goranov
- Martijn de Hamer
- Elly van den Heuvel
- Jaap-Henk Hoepman
- Bart Jacobs
- Sari Kajantie
- Mark Koek
- Jos Kuijpers
- Brett Lambo
- Eric Luiijf
- Scott McIntyre
- Milton Mueller
- Pär Österberg Medina
- Carol Overes
- Richard Perlotto
- David Rice
- Marcus Sachs
- Jacques Schuurman
- Alex Shipp
- Lance Spitzner
- Don Stikvoort
- Gigi Tagliapietra
- Jan Joris Vereijken
- Rémon Verkerk
- Randal Vickers
- David Watson
- Tillmann Werner
- Maurice Wessling
- Colin Whittaker
- Georg Wicherski
- Nicholas Witchell
- Dave Woutersen
Carol Overes started to work for CERT-RO (former name of GOVCERT.NL) in 2003. During these four years, he has been involved with the operational side of GOVCERT.NL, mostly writing advisories and handling incidents.
His personal security interest concerns monitoring in general. Two years ago, Carol started an experiment, whereby he set up a monitoring network for GOVCERT.NL, based on honeypot technology. This experiment was the starting point for an official monitoring project. One of the initial results from that project, has been the establishment of a distributed intrusion detection system, based on the SURFids tool.
Carol is currently involved with the second phase of the monitoring project, namely the development of a complete honeyclient solution.
His background has involved work in the ISP environment. For a number of years, Carol worked for the Dutch Telco provider KPN, where he was employed as a network engineer for KPN’s IP network. He loved to work with routing protocols, such as BGP (Border Gateway Protocol) and also worked on projects such as the expansion of the European peering network of KPN and the MPLS migration of the IP backbone. During his time at KPN, Carol was also a kernel member of KPN’s CERT, known as Uni-CERT.
The Honeyclient Project is a joint venture between NASK/CERT Polska, GOVCERT.NL and SURFnet. The goal is to develop a complete open source honeyclient system, based on existing state-of- the-art client honeypot solutions and an advanced crawler. The system focuses primarily on attacks against, or involving the use of, Web browsers. These include the detection of drive-by downloads, malicious binaries and phishing attempts. Apart from identifying browser exploits (including 0day attacks), the system is expected to automatically obtain and analyze the attacking malware and to, ultimately, generate its signature. The major incentive behind starting this project is the rapidly growing number of browser exploits involving varying degrees of user interaction. These types of attacks lie outside the scope of current monitoring systems in use by the three parties. Therefore, we view this new system as an expansion of our current monitoring and early warning abilities. Interfaces with existing systems - the CERT Polska ARAKIS.