Skip to content
Get A Demo
Sign Up Free

    SIEM Detection Test: Honeypot – HTTP Auth Test

    Detecting when a Honypot is accessed is important to detect lateral movement across your environment. We recommend that SIEMs should be tested for honeypot detection to ensure the detection of lateral movement which could originate from both employees and external bad actors.

    How to Test Your Honeypot for Lateral Movement via HTTP Auth

    Prerequisites
    • Blumira Sensor is deployed
    • Honeypot Module is configured
    HTTP Test
    1. Access the IP address of the Blumira Sensor through a web browser on port 8080. Example: http://1.1.1.1:8080
    2. Enter in any credentials into the username/password fields and submit
    3. Within minutes, a Finding (Alert) should appear in the responder dashboard in Blumira

    Get Started for Free

    Experience the Blumira Free SIEM, with automated detection and response plus compliance reports for 3 cloud connectors, forever.