Deploying, Managing, and Leveraging Honeypots in the Enterprise using Open Source Tools presented at BSidesLasVegas 2015

by Jason Trost, Nicholas Albright,

Summary : In this workshop we will present an overview of the current state of the art of leveraging open source tools to build a novel intrusion detection system inside the enterprise. We will discuss the pros/cons and ins/outs of several major open source honeypots as well as how to manage and deploy these sensors using the Modern Honey Network, Splunk, as well as integration into other systems such as ArcSight.