A Novel Honeynet Architecture using Software Agents

As cybersecurity risks increase worldwide, a host in any computer network may be controlled by attackers to build a group of infected machines with malicious software called a botnet. A honeynet, which is a network set up with intentional vulnerabilities, can be used to monitor and analyze attacker activities. In this paper, a novel honeynet architecture is proposed relying on virtualization and software agents. A proof of concept prototype is implemented and validated achieving 98% success rate. In addition, a large-scale distributed denial of service (DDoS) attack has been performed and achieved a success rate of only 79% due to hardware limitations.