PacketDecoy is a "honeypot" device designed to attract attackers to server emulations, which mimic
common operating systems and services. PacketDecoy intercepts hackers, gathers information about the
intruders, and alerts you that unauthorized access has been attempted. When PacketDecoy detects an
attacker, it records:
- the type of scan (e.g., Ping, TCP connection scan, etc.) or network connections made to the emulation
- what network commands the intruder tries
- username/password combinations that the attacker tries.
System administrators are notified by one or more alerts, depending on the PacketDecoy configuration,
that unauthorized access has been attempted and precautions can be taken to protect your resources.
|
|
