| 摘 要: 面对日益严峻的网络安全威胁,只有主动发现存在的漏洞和风险,才能最大限度地减少损失。然而主流的杀毒软件、防火墙等都属于被动防御技术,而蜜罐技术的出现弥补了之前技术的不足,变被动为主动。本文基于Docker和Python,设计实现了针对MySQL恶意攻击的蜜罐系统,系统包括MySQL服务器模拟模块、日志模块、捕获模块、管理模块和Docker模块。使用本系统可以捕获攻击者信息,追踪和分析黑客,达到主动防御网络威胁的目的。 |
| 关键词: 主动防御;蜜罐;MySQL;网络安全 |
|
中图分类号: TP315
文献标识码: A
|
| 基金项目: 2020年徐州工程学院大学生创新创业基金项目(2020047);2021年徐州工程学院大学生创新训练计划项目(xcx2021322,xcx2021327). |
|
| Design and Implementation of Honeypot System based on Docker |
|
HUANG Chengxin, KANG Xiaofeng, WANG Ke, SUN Dian, MAO Zhangrui
|
(College of Information Engineering, Xuzhou Institute of Technology, Xuzhou 221000, China )
761369543@qq.com; kxfeng07@163.com; admi1n@163.com; dsil3nce@foxmail.com; 1244529720@qq.com
|
| Abstract: With the increasingly severe network security threats, only by proactively discovering existing vulnerabilities and risks can losses be minimized. However, mainstream anti-virus software, firewalls, etc. are passive defense technologies. The emergence of honeypot technology makes up for the shortcomings of this technology, changing passive defense to active defense. Based on Docker and Python, this paper proposes to design and implement a honeypot system for MySQL malicious attacks. The system includes MySQL server simulation module, log module, capture module, management module and Docker module. The system can capture attacker information, track and analyze hackers, achieving the purpose of actively defending against network threats. |
| Keywords: active defense; honeypot; MySQL; network security |
