-
Notifications
You must be signed in to change notification settings - Fork 221
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
[QUESTION] 問題請教 #35
Labels
question
Further information is requested
Comments
|
针对问题7,请问目前已经实现文件监控了吗?我这边测试ssh蜜罐,vi创建文件在falco没有看到告警唉。感谢 |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
你好,
不好意思因為沒有微信(只有line),
上次的問題似乎有些沒回覆,
也有新增一些問題,
1、協議配置在/home/ehoney_proxy/httpproxy是二進制執行檔,如果是想要轉導其他非http、ssh不在預設port裡的服務,要如何產生其他port的二進制執行檔
2、如果使用ssh x.x.x.x -p 1063,之後再輸入要登入的帳號及密碼,就不會觸發告警,一定要ssh root@x.x.x.x -p 1063才會觸發,這個是否會修改
3、agent似乎是二進制執行檔,是否可開源
4、說明有提到 RDP、RTSP、MODBUS蜜罐,似乎沒看到
5、密簽提到有20多種,如文件、圖片、郵件,似乎只看到FILE一種
6、基於LSTM預測算法,可以預測駭客下一步攻擊手段,動態欺騙,這個功能在web上有呈現嗎
7、說明有提到使用Falco,是否有實作在web UI上,如果是在後台是在哪可以看到Falco的資訊
感謝說明
The text was updated successfully, but these errors were encountered: