Veeam Decoys Project
Introduction
The Veeam Decoys Project is an open-source initiative creating decoys for various Veeam and remote administration services to detect network scans and lateral movements by threat actors. It supports services such as Veeam Backup Server, Veeam Hardened Repository, and SSH, among others. Features include terminal user interface, logs, log forwarding, email notifications, and remote management. The project allows for detailed monitoring and alerting, capturing credentials and connection attempts, and forwarding this data to centralized servers.
Minimum requirements include 1 vCPU, 2GB RAM, and 50GB storage.
https://community.veeam.com/blogs-and-podcasts-57/veeam-decoys-project-8241
This project deploys decoy systems and data to mislead and trap cyber attackers, enhancing our proactive defense capabilities. By creating realistic but fake environments, we can monitor, detect, and respond to threats in real-time, providing advanced threat detection, an enhanced security posture, and comprehensive insights into attack methods and strategies.
In an era of constantly evolving cyber threats, the Veeam Decoys Project strengthens security and empowers organizations to better understand and counteract sophisticated attacks.