Honeypot Resurrection - Redesign of CERN’s Security Honeypots

This summer student’s project is about implementing an updated and improved honeypot solution as part of CERN’s computer network protection. A honeypot simulates a vulnerable computer system, traps an attacker and collects attack information. It does this by exposing seemingly un- patched services, such as SSH, Telnet or SMB and allows connections as well as interactions with the fake service. In this way, security researchers and network admins gain information about the source of attacks, the techniques used by intruders and possibly gain access to unknown malware samples uploaded by the adversaries.