The HoneyDB project continues to evolve to make it easier for developers, security researchers, and network defenders to deploy honeypots on the Internet. As a new step forward in this evolution, I’m happy to announce the HoneyDB Agent is available as a 1-Click deployment in the DigitalOcean Marketplace! Within minutes you can deploy a honeypot and quickly start collecting threat information for research or to help protect your Internet-facing assets from malicious sources.
DigitalOcean has always been a cost-effective, easy to use, cloud platform and their new 1-Click deployment option makes it even easier to deploy.
Once deployed, the latest version of the HoneyDB Agent will be installed with its default configuration. You can SSH into the droplet to configure your HoneyDB Agent keys so events are logged back to the HoneyDB backend. The HoneyDB backend shares the collected threat information with the HoneyDB community via graphs on the web site and Restful APIs.
The diagram above illustrates a basic use case. Deploy a HoneyDB Agent on a DigitalOcean droplet to capture threat information on sources targeting server resources in your IP space. From the HoneyDB API, you can download attack information that is specific to your HoneyDB Agent deployments or information collected from the entire HoneyDB community.
To learn more about deploying a HoneyDB Agent on DigitalOcean visit the HoneyDB Agent page in the DigitalOcean Marketplace. Also, keep an eye out for future blog posts on various use cases with HoneyDB. Have questions or feedback? Use this form to submit any inquiries.
For new DigitalOcean users, use this referral link to receive a $50 credit for 30 days.