ABSTRACT
Honeypots are computing resources whose value lies in being probed,
attacked, or compromised. They are security tools instrumental
in observing attackers’ behavior and understanding attack dynamics.
Honeypots generate a large amount of monitoring data, which
are often processed and analyzed manually. This introduces a delay
in the perception of atypical occurrences and changes in trends,
often rendering a deeper analysis of such phenomena unfeasible.
We introduce a platform for the periodic automated processing of
data collected by honeypots. The platform generates statistics and
graphs from a set of traffic capture files in the PCAP format, and
its modular design allows it to be easily extended and adapted to
produce different outputs.