Honeypot System for Attacks on SSH Protocol | Zendy

Solomon Z. Melese | Zendy; P. S. Avadhani | Zendy

AI Assistant Blog Pricing

Home ZAIA Blog

Open Access

Honeypot System for Attacks on SSH Protocol

Author(s) -

Solomon Z. Melese,

P. S. Avadhani

Publication year - 2016

Publication title -

international journal of computer network and information security

Language(s) - English

Resource type - Journals

eISSN - 2074-9104

pISSN - 2074-9090

DOI - 10.5815/ijcnis.2016.09.03

Subject(s) - honeypot , computer science , computer security , password , protocol (science) , dictionary attack , shell (structure) , intrusion detection system , intrusion , security token , network security , computer network , medicine , materials science , alternative medicine , geochemistry , pathology , composite material , geology

Honeypots are effective network security systems built to study the tactics of attackers and their intents. In this paper, we deployed Kippo honeypot to analyze Secure Shell attacks. Both the dictionary attack and intrusion activities of attackers have been discussed. We collected usernames and passwords that are attempted by dictionary attack targeting Secure Shell service. We have traced the frequently attacking machines based on their IP addresses. We have also recorded the commands they executed after successful logins to the Secure Shell honeypot server. We logged vast amount of connection requests destined to number of ports originated from different locations of the world. From our honeypot system, we have collected attack data that enables us to learn common Secure Shell based attacks.

The content you want is available to Zendy users.

Already have an account? Click here to sign in.

Having issues? You can contact us here

Accelerating Research