52ky 发表于 2022-9-12 09:39:33

虚拟蜜罐系统的设计

基于虚拟蜜罐结构Honeyd的系统结构、模拟路由拓扑、配置命令及日志功能,设计了虚拟蜜罐系统HoneypotV,并将其部署在实践网络环境中。该系统通过模拟操作系统的TCP/IP栈搭建蜜罐,选用与Nmap或Xprobe一样指纹的数据库模拟操作系统,以呼应用于虚拟蜜罐的网络恳求。可实现欺骗和拐骗、行为控制、侵/入检测、被动嗅探和数据分析等几项功能,实验证明达到预期的方案。
_rels\.rels
.....

(Based on the system structure, simulated routing topology, configuration commands and log functions of the virtual honeypot structure Honeyd, a virtual honeypot system HoneypotV is designed and deployed in a practical network environment. The system builds a honeypot by simulating the TCP/IP stack of the operating system, and selects the database with the same fingerprint as Nmap or Xprobe to simulate the operating system to respond to the network request for the virtual honeypot. It can realize several functions such as deception and abduction, behavior control, intrusion/intrusion detection, passive sniffing and data analysis, and experiments have proved that the expected solution is achieved.
_rels\.rels
.....)




页: [1]
查看完整版本: 虚拟蜜罐系统的设计