US 11,916,959 B2
Systems and methods for building a honeypot system
Yaroslav A. Shmelev, Moscow (RU); Demeter Dan, Moscow (RU); Preuss Marco, Moscow (RU); and Mikhail Y. Kuzin, Moscow (RU)
Assigned to AO Kaspersky Lab, Moscow (RU)
Filed by AO Kaspersky Lab, Moscow (RU)
Filed on Dec. 22, 2021, as Appl. No. 17/645,530.
Claims priority of application No. RU2021106663 (RU), filed on Mar. 15, 2021.
Prior Publication US 2022/0294822 A1, Sep. 15, 2022
Int. Cl. H04L 9/40 (2022.01)
CPC H04L 63/1491 (2013.01) 21 Claims
OG exemplary drawing
 
1. A system for building a honeypot environment, the system comprising:
a first computing device including a first gathering tool, the first gathering tool configured to collect data about the first computing device;
a second computing device including a second gathering tool, the second gathering tool configured to collect data about the second computing device, wherein the second computing device is independent of the first computing device;
a building tool configured to:
build a plurality of virtual environments, wherein each virtual environment includes an emulator configured to emulate at least one of the first computing device or the second computing device based on the data collected about the first computing device or the data collected about the second computing device, and
transfer data about the built plurality of virtual environments to a distribution tool; the distribution tool configured to:
select at least one of the plurality of virtual environments for association with the first computing device based on data about the plurality of virtual environments,
select at least one of the plurality of virtual environments for association with the second computing device based on data about the plurality of virtual environments, and
establish connections between the computing devices and the respective virtual environments associated with the computing devices.