Honeypot Cloudfront integration

aws-solutions / aws-waf-security-automations

This solution automatically deploys a single web access control list (web ACL) with a set of AWS WAF rules designed to filter common web-based attacks.

https://aws.amazon.com/solutions/aws-waf-security-automations

Apache License 2.0

837 stars 359 forks source link

Honeypot Cloudfront integration #204

Closed pbalajiips closed 1 year ago

pbalajiips commented 2 years ago

I have deployed "aws-waf-security-automations" Cloudformation template on our stg env. i see the HoneyPot APIGateway created. to Add CloudFront behavior, if someone has list of honeypot URI please share with me.

aijunpeng commented 2 years ago

Thanks for the question. You can find the honeypot URL on the Outputs tab of the CloudFormation stack: open the AWS CloudFormation console, choose the stack that you deployed, choose the Outputs tab, and then choose the value for BadBotHoneypotEndpoint.

pbalajiips commented 2 years ago

@aijunpeng Thanks for the response, i was asking about, list of vulnerable URI that can be monitored by Honeypot, such as https://www.example.com/.git https://www.example.com/admin

aijunpeng commented 1 year ago

We don't maintain such list. In general, Honeypot can lure and deflect any attackers attempting to access it.