Watching the Bad Guys with Cowrie

Honeypots

Photo by Christina Branco on Unsplash

Photo by Christina Branco on Unsplash

Author(s): Chris Binnie

Use Cowrie as a honeypot to capture attack data and learn more about your attacker's methods.

Special Thanks: This article was made possible by support from Linux Professional Institute

For one reason or another, I stumbled across a relatively old piece of software the other day while researching some unrelated DevOps security news. Doing so reminded me that I hadn’t run a honeypot for around fifteen years, and it inspired me to see if there were any advances in honeypot functionality.

There are three key types of honeypots, which fall into categories base on interactivity:

[...]

Use Express-Checkout link below to read the full article (PDF).

Buy Linux Magazine

SINGLE ISSUES

SUBSCRIPTIONS

Print Subs

Digisubs

TABLET & SMARTPHONE APPS

US / Canada

UK / Australia

Related content

Honeypots for the Pi

Adding a honeypot to your network will slow down attackers and warn you that intruders are on the wire.

more »
Honeynet

Security-conscious admins can use a honeynet to monitor, log, and analyze intrusion techniques.

more »
Charly's Column: Glastopf

Good traps catch mice, and honeypots catch malicious scripts. Sys admin Charly resorts to a honeypot in this issue, which, although difficult to install, is easy to manage.

more »
Tutorials – Intrusion Protection

No computer security is perfect, so make sure you've got a second line of protection.

more »
Docker Open Source Developer Tools

Docker provides the open source tools and resources for compiling, building, and testing containerized applications.

more »

comments powered by Disqus