[Owasp_wasc_distributed_web_honeypots_project] Honeypot Output & Reporting
adrian.winckles at owasp.org
Tue Apr 28 22:26:08 UTC 2015
I'm leading a research project for botnet detection in cloud and virtualized environments and am interested in the use of honeypots to provide intelligence data to help the detection mechanisms fine tune the detection process
The OWASP WASC Distributed WebHoneypot project looks like it might provide a very useful threat intelligence gathering mechanism that I could use with other detection mechanisms for cloud service providers to provide a better chance of finding a needle in a haystack
I've a few queries I'd be grateful is somebody could help me address
What data/metrics can the individual honeypots report back?
Can the individual honeypots be managed individually or must the ModSecurity console be used?
What other reporting mechanisms are supported, if any?
Does anyone have any experience with deploying the ovf's directly into an Amazon EC2 cloud?
How des one gain access to the console application, can it be downloaded as well?
OWASP UK Cambridge Chapter Leader
More information about the Owasp_wasc_distributed_web_honeypots_project