Guardpot
Guardpot is a deception security platform that deploys honeypots and decoy systems to detect and analyze cyber threats. The platform operates on a zero false-positive principle, meaning every alert generated indicates genuine malicious activity since there is no legitimate reason to access honeypot systems. It offers both physical and virtual deployment options, with physical devices designed for remote locations and virtual honeypots that can run on minimal resources. Key features include: - Lightweight virtual honeypots requiring only 512 MB RAM - Physical honeypot devices for endpoint and branch security - Pre-configured templates for rapid deployment - Integration with Active Directory for credential monitoring - Automated threat response capabilities that can feed IoC data to firewalls - Global threat intelligence network with over 700,000 malicious IP addresses - Centralized management console for controlling multiple decoy systems - Real-time monitoring and alerting capabilities - Compliance reporting features for audit requirements The system provides detailed analysis of attacker tactics, techniques, and procedures (TTPs) by monitoring their behavior within the decoy environments. It supports integration with SOAR platforms for automated incident response and can generate forensic evidence for security investigations.
FEATURES
EXPLORE BY TAGS
SIMILAR TOOLS
A WordPress plugin that logs failed login attempts to help monitor unauthorized access attempts on WordPress websites.
A Docker-based honeypot network implementation featuring cowrie and dionaea honeypots with centralized event collection, geolocation enrichment, and real-time attack visualization.
A combination of honeypot, monitoring tool, and alerting system for detecting insecure configurations.
A low interaction client honeypot that detects malicious websites using signature, anomaly and pattern matching techniques with automated URL collection and JavaScript analysis capabilities.
A low-interaction SSH authentication logging honeypot that logs all authentication attempts in JSON format.
PINNED
A cybersecurity platform that offers vulnerability scanning, Windows Defender and 3rd party AV management, and MFA compliance reporting, among other features.
Proton Pass is a cross-platform password manager that provides encrypted storage, password generation, and security monitoring features with integrated 2FA and dark web monitoring capabilities.
NordVPN is a commercial VPN service that encrypts internet connections and hides IP addresses through a global network of servers, featuring integrated threat protection and multi-device support.
Fractional CISO service that helps B2B companies implement security leadership to win enterprise deals, achieve compliance, and develop strategic security programs.