A Comparison of an Adaptive Self-Guarded Honeypot with Conventional Honeypots

Touch, Sereysethy; Colin, Jean-Noël

doi:10.3390/app12105224

Cited by 8 publications

(4 citation statements)

References 29 publications

(60 reference statements)

Supporting

Mentioning

Contrasting

Order By: Relevance

“…This command typically prints "ok" on the screen; however, it is likely being used in attacker scripts to check if the shell environment responds to basic commands such as echo with an ASCII representation of hex characters. This finding correlates with research by Touch and Colin on commands executed within various honeypots on the Internet [30].…”

Section: Command Analysissupporting

confidence: 88%

Intelligent Threat Detection—AI-Driven Analysis of Honeypot Data to Counter Cyber Threats

Lanka,

Gupta,

Varol

2024

Electronics

View full text Add to dashboard Cite

Security adversaries are rampant on the Internet, constantly seeking vulnerabilities to exploit. The sheer proliferation of these sophisticated threats necessitates innovative and swift defensive measures to protect the vulnerable infrastructure. Tools such as honeypots effectively determine adversary behavior and safeguard critical organizational systems. However, it takes a significant amount of time to analyze these attacks on the honeypots, and by the time actionable intelligence is gathered from the attacker’s tactics, techniques, and procedures (TTPs), it is often too late to prevent potential damage to the organization’s critical systems. This paper contributes to the advancement of cybersecurity practices by presenting a cutting-edge methodology, capitalizing on the synergy between artificial intelligence and threat analysis to combat evolving cyber threats. The current research articulates a novel strategy, outlining a method to analyze large volumes of attacker data from honeypots utilizing large language models (LLMs) to assimilate TTPs and apply this knowledge to identify real-time anomalies in regular user activity. The effectiveness of this model is tested in real-world scenarios, demonstrating a notable reduction in response time for detecting malicious activities in critical infrastructure. Moreover, we delve into the proposed framework’s practical implementation considerations and scalability, underscoring its adaptability in diverse organizational contexts.

show abstract

Section: Command Analysissupporting

confidence: 88%

Intelligent Threat Detection—AI-Driven Analysis of Honeypot Data to Counter Cyber Threats

Lanka,

Gupta,

Varol

2024

Electronics

View full text Add to dashboard Cite

show abstract

“…Moreover, the experienced attacker can detect the honeypot system and then use it as jumping hop instead of stopping stone. Hence, it professionals need extra security measures to prevent honeypot exploitation [11], [12].…”

Section: Low-interaction Honeypotsmentioning

confidence: 99%

Encountering social engineering activities with a novel honeypot mechanism

Abualhija,

Al-Shaf’i,

Turab

et al. 2023

IJECE

View full text Add to dashboard Cite

<span lang="EN-US">Communication and conducting businesses have eventually transformed to be performed through information and communication technology (ICT). While computer network security challenges have become increasingly significant, the world is facing a new era of crimes that can be conducted easily, quickly, and, on top of all, anonymously. Because system penetration is primarily dependent on human psychology and awareness, 80% of network cyberattacks use some form of social engineering tactics to deceive the target, exposing systems at risk, regardless of the security system's robustness. This study highlights the significance of technological solutions in making users more safe and secure. Throughout this paper, a novel approach to detecting and preventing social engineering attacks will be proposed, combining multiple security systems, and utilizing the concept of Honeypots to provide an automated prevention mechanism employing artificial intelligence (AI). This study aims to merge AI and honeypot with intrusion prevention system (IPS) to detect social engineering attacks, threaten the attacker, and restrict his session to keep users away from these manipulation tactics.</span>

show abstract

“…These honeypots and honeynets have an expanded repertoire of behavioral and architectural changes as a result. Semantically, the research [35,36,37] often mixes and combines the four terms as a reflection of the adaptive nature in these honey systems. Yet, even adaptive honeypots and honeynets rely on human intervention at various points in their lifecycle.…”

Section: Adaptivementioning

confidence: 99%

A green scheduling algorithm for cloud-based honeynets

Pittman¹,

Alaee²

2023

Front. Sustain.

View full text Add to dashboard Cite

Modern businesses leverage cloud architecture to achieve agile and cost-effective technology services. Doing so comes at the expense of the environment though cloud technologies consume large quantities of energy. Cloud energy consumption is concerning in light of global climate trends and dwindling fossil fuel reserves. Consequently, increasing attention is given to sustainable and green cloud computing, which seeks to optimize compute-resource allocation and usage of virtualized systems and services. At the same time, progress toward sustainable and green cloud technology is impeded because as more enterprises deploy services into cloud architecture, cybersecurity threats follow. Unfortunately, cybersecurity technologies are optimized for maximum service overwatch without regard for compute resources and energy. This negates the energy reduction achieved in recent sustainable technology advancements. In this work, a generalized cybersecurity honeynet scheduling algorithm is proposed, in which power, CPU, and network overhead are operationalized to increase sustainability while balancing defensive mechanisms. The work describes both the mathematical foundation for the algorithm and a pseudocode proof of concept.

show abstract

A Comparison of an Adaptive Self-Guarded Honeypot with Conventional Honeypots

Cited by 8 publications

References 29 publications

Intelligent Threat Detection—AI-Driven Analysis of Honeypot Data to Counter Cyber Threats

Intelligent Threat Detection—AI-Driven Analysis of Honeypot Data to Counter Cyber Threats

Encountering social engineering activities with a novel honeypot mechanism

A green scheduling algorithm for cloud-based honeynets

Contact Info

Product

Resources

About