This project is developed for individuals, researchers or companies interested in finding new trends in cyber-attacks by analysing the gathered data and learning how to defend systems against such attacks.


"Cybercriminals are developing and boosting their attacks at an alarming pace, exploiting the fear and uncertainty caused by the unstable social and economic situation created by COVID-19". Jürgen Stock, INTERPOL Security General.


The purpose of this project is to create a research-based honeypot network and analyse the traffic/attacks coming to the network. The honeypots were deployed worldwide to analyse the behaviour of cybercriminals from different continents and countries.


How it works: A user creates an account with any cloud services provider of their choice to host and deploy their MHN server along with honeypots. MHN server is a centralised server for management and data collection of honeypots. The MHN server is supported on Ubuntu 18.04, Ubuntu 16.04, and Centos 6.9. The user installs the MHN server through a number of Linux commands. Once the MHN server is setup, then the user can deploy the honeypots of their choice. After deploying the honeypots, the user can view the attacks/traffic coming to honeypots on MHN server dashboard with a live map. To perform deep analysis the user must setup the machine learning to pull the attacks stored in MHN server via deployed honeypots.