Honeypot – HTTP Auth Test

Honeypot SIEM Detection Test

Detecting when a Honypot is accessed is important to detect lateral movement across your environment. We recommend that SIEMs should be tested for honeypot detection to ensure the detection of lateral movement which could originate from both employees and external bad actors.

Sign Up For Your Free Account Today

Get your free account with Blumira and secure your Microsoft 365 environment in minutes. No credit card required.

How to Test Your Honeypot for Lateral Movement via HTTP Auth

Prerequisites

Blumira Sensor is deployed
Honeypot Module is configured

HTTP Test

Access the IP address of the Blumira Sensor through a web browser on port 8080. Example: http://1.1.1.1:8080
Enter in any credentials into the username/password fields and submit
Within minutes, a Finding (Alert) should appear in the responder dashboard in Blumira

Honeypot – HTTP Auth Test

Honeypot SIEM Detection Test

Sign Up For Your Free Account Today

How to Test Your Honeypot for Lateral Movement via HTTP Auth

Contact Sales

Reach Out