Tech Tuesday Recap / Recordings: Part 2 (Installing the Honeypot) release.
As mentioned during our "Tech Tuesday" session, the session itself was not recorded. Instead, I will be releasing three "stand alone" videos covering the major parts of the workshop.
The videos will be broken up into three parts:
- Introduction. What is DShield and the Internet Storm Center (to be released later today).
- Installing the honeypot. See blow for this video
- Using the DShield / Internet Storm Center Data (to be released tomorrow)
All videos will be available on our YouTube channel.
The instructions from the hands-on exercises are available at https://isc.sans.edu/techtuesday .
---
Johannes B. Ullrich, Ph.D. , Dean of Research, SANS Technology Institute
Twitter|
Keywords: honeypot install ubuntu raspberry pi
3 comment(s)
My next class:
| Application Security: Securing Web Apps, APIs, and Microservices | Washington | Jul 14th - Jul 19th 2025 |
×
![modal content]()
Diary Archives
Comments
So I have the honeypot all setup and running from my LAN interface. I do have a Ubiquity USG, so I setup the LAN2 port on it and the honeypot is pulling an IP from the DHCP pool I configured. However, the status script is showing that it isn't being exposed to the Internet, and I can't ssh into it anymore. I created the firewall rule for all of this, but obviously I did something wrong. Since you specifically mention using a USG in the video, I assume that you have it working? If so, would you please share the firewall rules that you used so I can determine where I went wrong?
Sincerely,
Jon
Anonymous
Jun 25th 2020
5 years ago
If you configured the honeypot in a different network: you need to run the install script again to adjust the honeypot firewall rules for the new network configuration.
Anonymous
Jun 25th 2020
5 years ago
Anonymous
Jun 26th 2020
5 years ago