deception and disruption

honeypot

attract attackers or machiines in this case and keep them involved to figure out what types of automated systems adn attacks they are using

create a virtual world to explore

most are open source and available to download

constant battle to discren the real form the fake

honeynet

a real network includes more than a single devices

servers, workstations, routers, switches, firewalls

build a larger deception network with one or more honeypots

honeyfiles

attract the attackers with more hoeny

create files with fake information

an alert is sent if the file is accessed

honeytokens

track the mailicious actors

add some traceable data to the honeynet so if it is stoeln, youll now where it came from

api credentials don’t actually porvide access but notifications are sent when used

fake email addresses can also be moitored to see who uses it

database records, browser cookues and web page pixels are all other examples