Honeypot is not simply a piece of cybersecurity technology. I view it as a concept which value lies heavily on education rather than simply operations. I’ve been conducting research and development with students from polytechnics to experiment with honeypots to learn more about “the more interesting stuff” (i.e. the topics cited above) rather than honeypots itself. Many aspiring cybersecurity professionals chooses the path of red team by default because it’s something they can do on their own. You can’t beef up your blue team skill when you have no actual systems to defend.
In this talk, I’ll share my experience with honeypots, and how honeypots can make you a better blue team player (or smurf)! I’ll share the various research and development done on honeypots around the topics of Cyber Threat Intelligence (CTI), Dev(Sec)Ops, Gane Theories, Attack Modelling, and more, and how they can improve your cybersecurity operations (SecOps).
