-
Notifications
You must be signed in to change notification settings - Fork 631
ElasticHoney Sensor
Brady Sullivan edited this page Nov 4, 2017
·
1 revision
ElasticHoney is a "simple elasticsearch honeypot designed to catch attackers exploiting RCE vulnerabilities in elasticsearch."
This sensor can be deployed using the Ubuntu - ElasticHoney deploy script, found in MHN's Deploy page. The script provided supports installation on Ubuntu 14.04 and 16.04 systems. To avoid installation errors, it is highly recommended you make sure the host system is fully up-to-date before running the deploy script.