Improving deception in honeynet: Through data manipulation

Emergence of honeynet, which is a network of honeypots, has changed the phase of internet security and information gathering about intruders. In improving deception of the honeynet which in turn increases the workload of attackers, most honeynet deployments are geared towards improving on the deception deal by using MAC addresses, IP addresses and protocols on host machine. Attackers gain access to networks with different motives, this work focuses on attackers who aim for data theft, data insertion, data deletion and data modification This paper also includes data manipulation, a new component introduced by the users of these hosts. This data content contributes to improving deception by dynamically sorting, shuffling, updating, manipulating and mapping each last modified state of the data to a unique MAC/IP addresses of an intruder machine that modified the system.