From 6256502143a789814af61b0390b23432626b5854 Mon Sep 17 00:00:00 2001 From: Alexandre Dulaunoy Date: Fri, 31 Aug 2018 07:19:41 +0200 Subject: [PATCH] chg: [honeypot-basic] updated to include no-interactive honeypot + network capture as data collection --- honeypot-basic/machinetag.json | 14 ++++++++++++-- 1 file changed, 12 insertions(+), 2 deletions(-) diff --git a/honeypot-basic/machinetag.json b/honeypot-basic/machinetag.json index 45a8369..1471ffe 100644 --- a/honeypot-basic/machinetag.json +++ b/honeypot-basic/machinetag.json @@ -1,7 +1,7 @@ { "namespace": "honeypot-basic", - "description": "Christian Seifert, Ian Welch, Peter Komisarczuk, ‘Taxonomy of Honeypots’, Technical Report CS-TR-06/12, VICTORIA UNIVERSITY OF WELLINGTON, School of Mathematical and Computing Sciences, June 2006, http://www.mcs.vuw.ac.nz/comp/Publications/archive/CS-TR-06/CS-TR-06-12.pdf", - "version": 1, + "description": "Updated from Christian Seifert, Ian Welch, Peter Komisarczuk, ‘Taxonomy of Honeypots’, Technical Report CS-TR-06/12, VICTORIA UNIVERSITY OF WELLINGTON, School of Mathematical and Computing Sciences, June 2006, http://www.mcs.vuw.ac.nz/comp/Publications/archive/CS-TR-06/CS-TR-06-12.pdf", + "version": 2, "predicates": [ { "value": "interaction-level", @@ -47,12 +47,22 @@ "value": "low", "expanded": "low Interaction Level", "description": "Exposed functionality being limited. For example, a simulated SSH server of a honeypot is not able to authenticate against a valid login/password combination" + }, + { + "value": "none", + "expanded": "No interaction capabilities", + "description": "No exposed functionality in the honeypot." } ] }, { "predicate": "data-capture", "entry": [ + { + "value": "network-capture", + "expanded": "Network capture", + "description": "The honeypot collects raw network capture." + }, { "value": "events", "expanded": "Events",