Web trap
Loading...
Date
2022
Journal Title
Journal ISSN
Volume Title
Publisher
UMT, Lahore
Abstract
Web Trap is a defensive scheme designed to enhance the security of a website as well as act as bait for the attacker to monitor his activities. It is an automated network that consists of three main components i.e., Mod Sec, ELK, and MISP. Mod Sec acts as a firewall and generates logs, these logs are sent to ELK which handles the logs and gives them a pictorial presentation to interact with. Lastly, after filtering the malicious and suspicious logs, the logs are sent to MISP which is an intelligent threat-sharing platform. It handles the logs accordingly and reports the malicious attacks to the community or the organization. The implementation requires some tools and software for the deployment of the system which are briefly discussed in the document. The system is handled by the Deceptive Server team who monitors and interacts with the logs, attackers, and users. Moreover, the system can be enhanced with more functionalities and features in the future with the increasing security advancements.