How ManTrap Works
ManTrap works by taking a single operating system and creating logical subcopies of it. These logical subcopies, called cages, are self-contained operating systems that attackers interact with. Each cage has its own file systems, binaries, libraries, processes, and network interface card. The goal is for intruders to be locked into these cages, where they are detected and captured and their every action is recorded. The attacker is given the full functionality he would expect on a real system, but he is not aware that he is on a honeypot. Unknown to the attacker, each cage operates under the command and control of the host system. None of the cages know about other cages or even about the host system. A logical diagram of this ...
Get Honeypots: Tracking Hackers now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.
