Foundation Projects
Intelligent Honeynet Threat Sharing Platform (grant)
Swiss German University (SGU), BSSN (Badan Siber & Sandi Negara), Indonesia Honeynet Project (IHP)
Cyber security threats will continue to rise as new services are provided. These newly introduced and existing services will pose new and unknown risks due to system vulnerabilities and other related system threats. Continuous monitoring of these threats is necessary to ensure the safety and security of the running services and deploying honeypots to track these attacks will provide important and insightful information on the attacker's intention and activities. This project contributes to the ongoing efforts of the Indonesia Honeynet Project (IHP) and the Cyber Security Community – Information Sharing Analysis Center (CSC-ISAC) that help raise cyber security awareness for the public while promoting a wider collaboration for all cyber security communities In Indonesia and ASEAN countries.
This project built upon previous related projects (Honeynet Threat Sharing Platform 2019, Collaborative Honeynet Threat Sharing Platform 2020) and added two honeypot types - honeytrap and RDPy - to provide an even wider range of detecting security threats especially in Ethereum cryptocurrency and remote desktop services. Additionally, several upgrades and additions were implemented to improve data collection, synchronization, analysis, and storage, as well as to monitor the performance of each service running on the system. The enriched data is now ready to be shared as threat intelligence information using standardized threat-sharing protocols such as TAXII and MISP. The latest version of the public dashboard of CSC-ISAC has been released and they are accessible online and include the latest visualization of different threat maps.
Research resulting from this project has been submitted, presented, and published at different International Conferences in 2022 and the collection of research publications can be viewed on the CSC-ISAC website.
Related:
