摘要
随着网络攻击日益频发、隐蔽和复杂,传统的被动防御手段难以及时、有效地识别新型威胁。文章介绍了Cowrie蜜罐的基本原理和实现机制,阐述了机房网络主动诱捕的系统架构设计,具体论述了蜜罐部署、数据收集和分析等核心部分,最后基于实验测试环境验证了该系统捕获攻击行为的有效性。
With the increasing frequency,stealth,and complexity of network attacks,traditional passive defense methods struggle to identify new threats in a timely and effective manner.Firstly,the basic principles and implementation mechanisms of Cowrie honeypots are introduced.Next,the system architecture design for active capture in computer room networks is elaborated,specifically discussing the core components of honeypot deployment,data collection,and analysis.Finally,the effectiveness and real-time performance of the system in capturing attack behaviors are validated based on an experimental test environment.
作者
赵仲力
李庆
ZHAO Zhongli;LI Qing(Tianjin Baodi District Public Emergency Warning Information Release Center,Tianjin 301800,China;Tianjin weather modification office in Jinnan District,Tianjin 300350,China)
出处
《无线互联科技》
2024年第15期117-119,共3页
Wireless Internet Science and Technology
