[Cross posting with App Sec Streetfighter blog]
The SANS ISC Webhoneypot project was started over a year ago and the client had been in public beta since June. We have been collecting data from honeypots since January. The goal of the project is to collect quantitative data about the prevalence of large scale automated attacks.
We are now ready to share some collected data with the community. Our intention is to share the data and findings with the community in the same manner as the original DShield project.
The high level stats of the Webhoneypot can be found at
Various reports can be found at
A limited search interface can be found at
These report pages and especially the search interface is in beta currently. We intend to refine these as the project matures. We appreciate any feedback on these reports and search capabilities.
Feel free to analyze the data as you wish, if you spot anything interesting, please write to us. Thanks and happy log reading.
I will be teaching next: Application Security: Securing Web Apps, APIs, and Microservices - SANS London July 2022