Analysis of embedded web applications for honeypot emulation programs

Abstract

This paper describes a process for analyzing web server requests and responses for use in developing emulation programs for low interaction honeypot responses. In order to manage the complexity of this task, this approach first identifies that static and dynamic resources made available from a web server. Then, for each dynamic resource a fuzzing approach was used to generate and analyze the range of responses for a range of requests, including ones with the types of malformed input that can appear in computer security attacks.