Goal: To identify attackers attempting to compromise or gain access to sensitive data within Docker containers.
Approach: Monitoring access to the deceptive container and analyzing attacker behavior. This element involves deploying a deceptive Docker container that mimics a legitimate container but contains fake or misleading data, or triggers alerts upon access.
Attackers who attempt to access or modify data within the deceptive container will be identified and their actions will be logged.