"Honeypot" is a term used to describe a computer or a network that is set to attract hackers. It is essentially a trap set to analyze the attacks of hackers on a system and to detect vulnerabilities. Of course, they are not always used to analyze and detect weaknesses in systems. The most common purpose of using it is by secret services (ie. F.B.I.) ;-) and usually "scam" sites offering illegal services or goods. Most are in the deep / dark web and several have been made around some myths (ie. red rooms) Below we will see how to run a honeypot on windows. First we need to download the KFSensor which works like a honeypot. Once installed, it starts running and monitoring. It's already configured to monitor all TCP and UDP ports. In the figure below we see that it works as an IDS (intrusion detection system) and has detected a port scan on our system.

We can double click there and reveal all the details of the attack on the window that will open. It also reveals the type of attack and retaining complete control and preventing any intrusion into our system.

#honeypot #security #windows