Bait and Switch Honeypot System
Platforms:
Linux,
POSIX
Categories:
Evasion,
Intrusion Detection,
Monitoring,
Network Utilities
Version: v2.0b
URL: http://baitnswitch.sourceforge.net/
The Bait and Switch Honeypot System combines the snort Intrusion Detection System (IDS) with honeypot technology to create a system that reacts to hostile intrusion attempts by marking and then redirecting all "bad" traffic to a honeypot that partially mirrors your production system. Once switched, the would-be hacker is unknowingly attacking your honeypot instead of the real data, while your clients and/or users are still safely accessing the real system. Life goes on, your data is safe, and you get to learn about the bad guy as an added benefit.
[ reply ]