[Owasp_wasc_distributed_web_honeypots_project] Honeypot Output & Reporting

Adrian Winckles adrian.winckles at owasp.org
Tue Apr 28 22:26:08 UTC 2015


Dear All

I'm leading a research project for botnet detection in cloud and virtualized environments and am interested in the use of honeypots to provide intelligence data to help the detection mechanisms fine tune the detection process

The OWASP WASC Distributed WebHoneypot project looks like it might provide a very useful threat intelligence gathering mechanism that I could use with other detection mechanisms for cloud service providers to provide a better chance of finding a needle in a haystack

I've a few queries I'd be grateful is somebody could help me address

What data/metrics can the individual honeypots report back?
Can the individual honeypots be managed individually or must the ModSecurity console be used?
What other reporting mechanisms are supported, if any?
Does anyone have any experience with deploying the ovf's directly into an Amazon EC2 cloud?
How des one gain access to the console application, can it be downloaded as well?

Many thanks

Adrian 

OWASP UK Cambridge Chapter Leader


More information about the Owasp_wasc_distributed_web_honeypots_project mailing list