System – D E C E I V E R . I O

Deceive, Detect, Engage

Fake Windows System Files

Goal: To identify attackers attempting to access or modify sensitive system files.

Approach: Monitoring access to the fake system files and analyzing attacker behavior.

This element involves creating fake system files that mimic legitimate files but contain misleading or deceptive information.

Attackers who attempt to access or modify the fake system files will be identified and their actions will be logged. This information can be used to improve defenses and make it more difficult for attackers to gather information about the system or modify its configuration.

Fake System Logs

Goal: Gather information about attacker activity by planting fake system logs.

Approach: Creating and placing misleading system logs to attract attacker attention.

Create fake system logs that indicate suspicious activity, failed login attempts, or successful privilege escalations. Place these logs in locations where attackers are likely to search for evidence of compromise.

Tag: System

Fake Windows System Files

Fake System Logs

ORION Detlab: Forging Resilient Detections in the HEFAISTOS Ecosystem

The Maieutic Engine: Birth of a New Detection Engineering Paradigm

The Forge, The Guide, and The Hunter: Unifying Detection Engineering with the Mythological Triad of HEFAISTOS, KEDALION, and ORION

Dendrite: Bridging the Synaptic Gap Between External Intelligence and Internal Defense