An Innovative Security Strategy using Reactive Web Application Honeypot
Rajat Gupta1, Madhu Vishwanatham V.2, Murugan K.3, Manikandan K4
1Rajat Gupta*, Department of Computer Science, Vellore Institute of Technology, Vellore, India.
2Madhu Vishwanatham V., School of Computer Science, Vellore Institute of Technology, Vellore, India.
3Murugan K., Department of Computer Science, Vellore Institute of Technology, Vellore, India.
3Manikandan K., Department of Computer Science, Vellore Institute of Technology, Vellore, India.
Manuscript received on February 10, 2020. | Revised Manuscript received on March 02, 2020. | Manuscript published on March 10, 2020. | PP: 2092-2097 | Volume-9 Issue-5, March 2020. | Retrieval Number: E2957039520/2020©BEIESP | DOI: 10.35940/ijitee.E2957.039520
Open Access | Ethics and Policies | Cite | Mendeley
© The Authors. Blue Eyes Intelligence Engineering and Sciences Publication (BEIESP). This is an open access article under the CC BY-NC-ND license (http://creativecommons.org/licenses/by-nc-nd/4.0/)
Abstract: Nowadays, web applications have become most prevailing in the industry, and the critical data of most organizations are stored using web apps. Thus, web applications pose a large target for assorted cyber-attacks. As mitigation for them, among many proposed solutions, web application honeypots are much sophisticated and robust protection. In this paper, we propose a low interaction, adaptive, and dynamic web application honeypot that imitates the vulnerabilities through HTTP events. The honeypot is built with SNARE and TANNER; SNARE devises the attack surface and sends the requests to TANNER, which evaluates them and determines how SNARE should respond to the requests. TANNER is an analysis and classification tool, which analyses and evaluates HTTP requests served by SNARE, and composes a dynamic response by its emulation engine. The honeypot works abreast major complex vulnerabilities, deceiving the attacker by lying under the surface of a real web application.
Keywords: Out of Band Injection, XXE Injection, XSS, Asynchronous Docker.
Scope of the Article: Security, Trust and Privacy