|
1 | | -# CodePath_Cybersecurity_Week9_Project |
| 1 | +# Honeypot Assignment |
| 2 | + |
| 3 | +**Time spent:** **58** hours spent in total |
| 4 | + |
| 5 | +**Objective:** Create a honeynet using MHN-Admin. Present your findings as if you were requested to give a brief report of the current state of Internet security. Assume that your audience is a current employer who is questioning why the company should allocate anymore resources to the IT security team. |
| 6 | + |
| 7 | +### MHN-Admin Deployment (Required) |
| 8 | + |
| 9 | +**Summary:** For this project, I deployed the VM's through Google Cloud Platform(GCP). The Honeypot framework that I used was Modern Honey Network. The instance was created with Ubuntu 18.04. |
| 10 | + |
| 11 | +<img src="mhn-admin.gif"> |
| 12 | + |
| 13 | +### Dionaea Honeypot Deployment (Required) |
| 14 | + |
| 15 | +**Summary:** Dionaea intention is to trap malware exploiting vulnerabilities exposed by services offered to a network, the ultimate goal is gaining a copy of the malware. |
| 16 | + |
| 17 | +<img src="dionaea-honeypot.gif"> |
| 18 | + |
| 19 | +### Database Backup (Required) |
| 20 | + |
| 21 | +**Summary:** What is the RDBMS that MHN-Admin uses? What information does the exported JSON file record? |
| 22 | + |
| 23 | +*Be sure to upload [session.json](https://github.com/AtVict0r/CodePath_Cybersecurity_Week9_Project/blob/master/session.json) directly to this GitHub repo/branch in order to get full credit.* |
| 24 | + |
| 25 | +List of the most frequently attacked ports: |
| 26 | + |
| 27 | +| Attacked Ports | Common Use | |
| 28 | +| --------------------- | -------------- | |
| 29 | +| 22 | SSH | |
| 30 | +| 25 | SMTP | |
| 31 | +| 445 | Windows Server | |
| 32 | +| 3306 | MySQL | |
| 33 | +| 5060 | VoIP | |
| 34 | + |
| 35 | +Some ountries responsible for the attempts: |
| 36 | + |
| 37 | +| Attacker IPs | Country | |
| 38 | +| -------------- | --------- | |
| 39 | +| 91.134.213.144 | Bulgaria | |
| 40 | +| 195.154.105.200 | France | |
| 41 | +| 46.101.178.128 | Germany | |
| 42 | +| 150.95.146.205 | Japan | |
| 43 | +| 198.24.171.250 | USA | |
| 44 | + |
| 45 | +## Notes |
| 46 | + |
| 47 | +Describe any challenges encountered while doing the assignment. |
0 commit comments