Deutsch

Easy and reliable attack detection

The honeyBox appliance allows to monitor networks in a very cost efficient way to detect and observe attacks and malware spreading. The system emulates a large number of attackable systems (low interaction honeypots) in different network segments.

[Download Datasheet 4-Port Appliance]

[Download Datasheet honeyBox micro (1-Port System, German)]

[Download Datasheet honeyBox industrial (German)]

Scenarios of Use

Protecting the Local Network

By using one or more honeyBox appliances, networks ranging from small size to very large size can be monitored for attacks. For this purpose, the virtual honeypots are placed in different segments. Several hundred virtual honeypots can be configured with one appliance.

Monitoring Critical Areas (e.g. Server Farms and DMZs)

With the honeyBox appliances, sensitive network areas can be monitored for attackers? activities. Thus, monitoring of complex environments can be realized without interfering with productive systems and without interfering with the network.

Detection of Malware Spreading in the Local Network

Malicious software spreads across the internal network using mechanisms which can be reliably detected by the honeyBox appliance. These mechanisms include scanning for existent systems, addressing the services running thereon and contaminating these systems by introducing malicious code.

Using the honeyBox Appliance in a Research System

HoneyBox appliances can be employed as components of a research system. Thus, a plurality of virtual honeypots can be set up for monitoring, tracking and analysing attacks. Such research systems are valuable tools which provide a better understanding of attacks.

Your Benefit

  1. Efficient and reliable detection of attacks and malware spreading
  2. Low effort for installation and putting into operation. The appliance is ready to go after the first configuration which will take about 1 hour.
  3. Low costs for administration and operation. Backup and update functions are implemented already and can be automated.
  4. Checking the event logs is very easy. Only if something is happening, events are logged.
  5. No adverse effect on availability like in IDS/IPS. The honeyBox does not have to be looped into the data stream. So no redundant honeyBox appliances are required.

Conclusion: High benefit, low investment and low operating effort

Further Cost Reduction by Hardware Appliances

In addition to the all software version, the honeyBox appliance is also available as a hardware appliance. The advantages of an all hardware solution are:

  • Faster installation, because the appliance is pre-configured
  • Hardware is adapted to the functionality
  • More cost-efficient than a standard server
  • Simplified disaster recovery
  • Hardware exchange service NBD (Next Business Day) (optional)

The appliance is equipped with 4 Gigabit Ethernet ports, with one of them being used as a dedicated management interface.

Awards

Bayerischer Sicherheitspreis 2009 (Bavarian Security Award 2009)

The honeyBox appliance has been awarded with the Bavarian Security Award 2009 for outstanding and innovative security solutions for company security. The award has been handed over by the Bavarian Minister of the Interior Joachim Herrmann.

Innovationspreis 2009 Kategorie IT-Sicherheit TOP20 (Innovation Award 2009 Category IT-Security TOP20)

The Initiative Mittelstand has decorated innovative IT solutions in different categories. secXtreme achieved the Top20 in the category IT-Security.