Implementation of Honeynet and Honeypot in Network Infrastructure in Production Network

TL;DR

This paper discusses implementing a honeynet with honeypots in a production network to deceive attackers, analyze their behavior, and enhance security measures.

Contribution

It demonstrates the deployment of a honeynet with honeypots that mimic real resources in a production environment for security analysis.

Findings

Honeypots effectively divert attackers in production networks

Honeynet deployment provides valuable attack behavior insights

Enhanced security monitoring through honeypots

Abstract

Network infrastructure in a production environment is increasingly targeted by attackers every day. Many resources and services now rely on the internet, making network infrastructure one of the most critical parts to protect, as it hosts numerous company resources and services. Several solutions have already been proposed to prevent attacks, minimize damage, and divert hackers and intruders. Among these, the honeypot stands out as a highly effective tool; it is designed to mimic both a scanner and an attacker, diverting and misleading them within a simulated, production-level environment. This paper will demonstrate the use of a honeynet where a honeypot acts like a real resource to deceive the attacker and analyze their behavior.