DEV Community

Cover image for Catching Attackers with Traps
Tolga Ünlü
Tolga Ünlü

Posted on

3 2

Catching Attackers with Traps

Sometimes, a simple trap or honeytoken placed at the right spot in your application can be enough to catch suspicious activity. This video from Shakacon by two Application Security Engineers at Netflix is an example implementing this idea with a project called Ensnare (unfortunately not maintained anymore).

I was wondering whether this form of attacker detection is actually practiced by you folks and what your experiences were in regards to successes, issues, implementation and maintenance effort.

Another, more recent illustration of this idea can be found in this talk by Dana Epp:

Top comments (0)

Billboard image

The Next Generation Developer Platform

Coherence is the first Platform-as-a-Service you can control. Unlike "black-box" platforms that are opinionated about the infra you can deploy, Coherence is powered by CNC, the open-source IaC framework, which offers limitless customization.

Learn more