Honeypot Hijinks: The Hilarious Struggle of Clustering 500,000 Password Commands!
DShield honeypots are like digital piñatas, attracting attacks of all flavors! After a year of data collection, I learned 94% of unique commands featured ‘passwd’. Who knew that hackers loved password changes more than I love pizza? Filtering them revealed 17 quirky command clusters, making data analysis a wacky adventure.
Hot Take:
Ah, the glamorous life of a honeypot operator! Who knew that playing with 500,000 unique commands could lead to a crash course in memory management? It’s like trying to cram all of Netflix into a 1990s flip phone – spoiler alert, it doesn’t fit. Welcome to the cyber wild west, folks, where 94% of hackers just want to change your password and the other 6% are too busy downloading cat videos. Yeehaw!
Key Points:
- DShield honeypots are capturing a variety of attack traffic, with the residential honeypot taking the top spot in volume.
- Cowrie logs reveal that 94% of the unique commands submitted relate to password changes.
- Python scripts for data clustering help identify command patterns, but memory issues are a persistent challenge.
- Seventeen clusters of commands were identified, with some outliers presenting unique scripts.
- A standout script was found only once, highlighting the importance of data sampling and analysis.
Already a member? Log in here