DecoyPulse Honeypots
10
Total Honeypots
10
Active
16
Triggered (30d)
2
Internal Triggers
8
External Triggers
98.7%
Avg Uptime
0
False Positives
4
Unique Attackers
Honeypot Status
DP-SSH-01
SSH Server
DP-RDP-01
RDP Terminal
DP-SMB-01
SMB File Share
DP-HTTP-01
Web Admin Panel
DP-SQL-01
MSSQL Database
DP-FTP-01
FTP Server
DP-LDAP-01
LDAP Directory
DP-SMTP-01
SMTP Mail Relay
DP-CRED-01
Credential Lure
DP-FILE-01
Canary Documents
Trigger Activity Log
25 events (last 30 days)| ID | Time | Honeypot | Action | Source IP | Source Type | User Context | Severity | Alert Raised |
|---|---|---|---|---|---|---|---|---|
DPT-0004 |
11h ago | DP-HTTP-01 | RDP brute force from internal IP | 10.2.109.73 |
Internal | j.smith | Critical | No |
DPT-0007 |
1d ago | DP-HTTP-01 | Lateral movement using honeypot credentials | 10.0.110.61 |
Internal | e.evans | Critical | Yes |
DPT-0019 |
2d ago | DP-FTP-01 | SQL authentication probe detected | 45.50.148.246 |
External | — | Medium | No |
DPT-0021 |
2d ago | DP-SSH-01 | LDAP bind with service account | 103.170.216.130 |
External | — | Medium | Yes |
DPT-0023 |
3d ago | DP-FILE-01 | FTP anonymous login attempt | 45.52.148.79 |
External | — | Medium | Yes |
DPT-0012 |
5d ago | DP-FTP-01 | LDAP bind with service account | 103.188.216.58 |
External | — | Medium | Yes |
DPT-0002 |
5d ago | DP-SMB-01 | Credential spray against honeypot service | 103.229.216.221 |
External | — | High | Yes |
DPT-0016 |
6d ago | DP-LDAP-01 | Directory traversal attempt on web honeypot | 10.2.110.222 |
Internal | e.evans | Critical | Yes |
DPT-0022 |
7d ago | DP-LDAP-01 | HTTP admin panel login attempted | 45.251.148.41 |
External | — | High | Yes |
DPT-0025 |
8d ago | DP-FILE-01 | Automated tool fingerprint detected | 10.1.15.84 |
Internal | f.hall | Critical | Yes |
DPT-0018 |
9d ago | DP-SMB-01 | Directory traversal attempt on web honeypot | 194.32.62.82 |
External | — | Medium | Yes |
DPT-0009 |
10d ago | DP-SSH-01 | SQL authentication probe detected | 103.117.216.135 |
External | — | High | Yes |
DPT-0011 |
15d ago | DP-SMB-01 | SQL authentication probe detected | 45.247.148.228 |
External | — | Medium | Yes |
DPT-0013 |
15d ago | DP-HTTP-01 | SMB share enumeration attempt | 10.3.21.232 |
Internal | a.wilson | Critical | Yes |
DPT-0024 |
15d ago | DP-SQL-01 | LDAP bind with service account | 10.3.84.30 |
Internal | h.roberts | Critical | Yes |
DPT-0020 |
18d ago | DP-HTTP-01 | SMB share enumeration attempt | 185.53.220.150 |
External | — | Medium | Yes |
DPT-0003 |
19d ago | DP-HTTP-01 | Credential spray against honeypot service | 91.94.195.97 |
External | — | Medium | Yes |
DPT-0008 |
19d ago | DP-FTP-01 | Directory traversal attempt on web honeypot | 91.93.195.65 |
External | — | Medium | Yes |
DPT-0001 |
21d ago | DP-FTP-01 | Automated tool fingerprint detected | 91.48.195.150 |
External | — | Medium | Yes |
DPT-0010 |
22d ago | DP-FILE-01 | SMB share enumeration attempt | 91.149.195.95 |
External | — | High | Yes |
DPT-0014 |
23d ago | DP-FILE-01 | Credential spray against honeypot service | 45.163.148.107 |
External | — | High | Yes |
DPT-0006 |
24d ago | DP-FILE-01 | SSH login attempt with user "admin" | 194.3.62.187 |
External | — | Medium | No |
DPT-0017 |
25d ago | DP-SQL-01 | Directory traversal attempt on web honeypot | 185.144.220.166 |
External | — | High | Yes |
DPT-0005 |
26d ago | DP-SQL-01 | SSH login attempt with user "admin" | 185.189.220.184 |
External | — | High | Yes |
DPT-0015 |
28d ago | DP-SQL-01 | Directory traversal attempt on web honeypot | 10.2.124.49 |
Internal | m.taylor | Critical | Yes |
Zero False Positive Detection
DecoyPulse honeypots have zero false positive rate because no legitimate user or service should ever interact with them. Any trigger is inherently suspicious and warrants investigation. Internal triggers are especially critical as they may indicate lateral movement or insider threat activity.