I have deployed a low-interaction honeypot on my ec2 aws instance but I am not receiving any traffic. Where can I share the URL so that I can get more traffic especially from automated bots.
Asked
Active
Viewed 113 times
0
-
How long has the honeypot online? What kind of service is exposed, SSH or other? Have you tested the honeypot yourself to make there are no firewall rules masking the existence of the service? – Kate Aug 09 '23 at 19:11
-
Depending on the services configured (type, known vulnerable) you may have to wait quite some time for mass scanners (Shodan, Censys, etc.) to hit your system as many actors leverage these services over building their own scanning infrastructure. – signus Aug 10 '23 at 03:22
-
The honeypot has been up for a day but I got 0 traffic – cost p Aug 10 '23 at 11:41
-
I googled "how to get traffic to my honeypot" and the duplicate above was the top hit. – schroeder Aug 10 '23 at 14:30
1 Answers
-2
Why do you want to attract malicious actors? I can assume research but context will dictate the best answer.
If you are running an application on AWS then the idea, in my experience, would be to have it behind the firewall. That way you can block outgoing traffic and it looks more legitimate to an adversary.
Edit: short, messy answer is social media that you believe would be scraped.
d0wneyFresh
- 81
- 3