Browse Definitions :
Definition

virtual honeypot

Ivy Wigmore
By

A virtual honeypot is software that emulates a vulnerable system or network to attract intruders and study their behavior. 

Honeypot owners can gather information about intruders and their actions that can help identify network vulnerabilities and take actions to protect weak points. The information can also be used to determine what IP addresses and requests should be blocked. Attacker information can also be turned over to the authorities. 

Virtual honeypots contrast with hardware-based honeypots, which are dedicated computers, networks or network segments designed to serve the same purpose. Virtual honeypots can be thought of as virtual machines (VMs) which may exist in multiple configurations on a single computer or appliance to emulate various systems and vulnerabilities.

Virtual honeypots are cheaper to deploy and more secure than hardware-based systems. In some cases, for example, real honeypots have been infiltrated by intruders who were able to use them to attack the corporate network. However, because a virtual honeypot is an emulator, it doesn't function exactly as a real system does and hackers may be able to pick up on cues that indicate the difference. 

See a video introduction to using honeyd virtual honeypot software:

This was last updated in June 2018

Continue Reading About virtual honeypot

SearchCompliance
  • OPSEC (operations security)

    OPSEC (operations security) is a security and risk management process and strategy that classifies information, then determines ...

  • smart contract

    A smart contract is a decentralized application that executes business logic in response to events.

  • compliance risk

    Compliance risk is an organization's potential exposure to legal penalties, financial forfeiture and material loss, resulting ...

SearchSecurity
  • private key

    A private key, also known as a secret key, is a variable in cryptography that is used with an algorithm to encrypt and decrypt ...

  • DOS (disk operating system)

    A DOS, or disk operating system, is an operating system that runs from a disk drive. The term can also refer to a particular ...

  • security token

    A security token is a physical or digital device that provides two-factor authentication for a user to prove their identity in a ...

SearchHealthIT
SearchDisasterRecovery
  • What is risk mitigation?

    Risk mitigation is a strategy to prepare for and lessen the effects of threats faced by a business.

  • change control

    Change control is a systematic approach to managing all changes made to a product or system.

  • disaster recovery (DR)

    Disaster recovery (DR) is an organization's ability to respond to and recover from an event that affects business operations.

SearchStorage
  • What is RAID 6?

    RAID 6, also known as double-parity RAID, uses two parity stripes on each disk. It allows for two disk failures within the RAID ...

  • VRAM (video RAM)

    VRAM (video RAM) refers to any type of random access memory (RAM) specifically used to store image data for a computer display.

  • PCIe SSD (PCIe solid-state drive)

    A PCIe SSD (PCIe solid-state drive) is a high-speed expansion card that attaches a computer to its peripherals.

Close