Detect Honeypots and Lures Empower Red Teams
The main idea behind Honeypots and Honey Tokens is to lure attackers to use them, letting them think they’re on the right path to achieve privileged credentials or spread through the domain environment. Attackers can study these Honey Tokens / lures and easily avoid them.
Using simple validations that take only a few minutes, an attacker can identify objects that are fake and avoid the trap. The validation of attackers and avoidance of Honey Tokens can be done without triggering any alarm and without authentication or lateral movement.
- Kerberoasting Service Accounts Honey Tokens
- Fake Computer Accounts Honey Pots
- Fake Domain Admins Accounts Honey Tokens
- Fake Memory Credentials Honey Tokens
- Fake Credentials Manager Credentials Breadcrumbs
- Fake Mapped Drives Breadcrumbs
- DNS Records Manipulation Honey Pots
Technical Features:
- Powershell Only, Supports version 2+
- Windows 7 and above
- Active Directory Environment
- Remote Capabilities using WinRM
Professional
Services
The Honeypot Buster is an open-source project released in February 2017 to prove that attackers can detect and easily bypass honeypot solutions.
Do you want to get the full version? Contact our professional services. Running the script without a certified Javelin representative could lead to misleading results and present a risk to your network.
- AUSTIN OFFICE
- 201 W. 5th Street
- Austin, TX
- USA
- Call us
- 1-888-867-5179
- PALO ALTO
- 550 California Ave
- Palo Alto, CA
- USA
- Call us
- 1-888-867-5179
- PRODUCTS
- Javelin AD|PROTECT
- Javelin AD|ASSESS
- Javelin AD|PROTECT for Business Services
- Javelin AD|PROTECT for Critical Infrastructure
- Javelin AD|PROTECT for Energy
- Javelin AD|PROTECT for Financial Services
- Javelin AD|PROTECT for Government
- Javelin AD|PROTECT for Healthcare
- Javelin AD|PROTECT for Information Security
- Javelin AD|PROTECT for Retail
- ©2018 Javelin Networks Inc. All Rights Reserved