Dell open sources DCEPT honeypot tool

By John Atienza on March 15, 2016


Dell SecureWorks researchers have developed a honeypot tool for Windows system administrators to detect network intrusions and pinpoint the original source. (ex: compromised endpoints). The great thing is that now Dell has made it available to everybody. The tool uses a honey token, or fake credentials, that have been placed on the machine. If anyone has used that token to gain administrator privileges they are sent into the honeypot.

DCEPT is available on GitHub at the following URL: