Dejavu: Open source Deception Framework

DejaVu is a Deception Framework open source that can be used to deploy packages to a system's infrastructure.

Ο checklist logging and notification displays detailed information about the alerts that are created and can be further configured for how they are handled.

One of the most important advantages of DejaVu is that it uses a single platform, where you can develop skills in different VLANS, manage them or just watch them.

Contents hide

Architecture

Decoy Types

Application snapshots

Architecture

screenshot 2021 10 04 at 08 33 03 dejavu v13 releases open source deception framework • penetration testing

Decoy Types

Server Decoys
- MYSQL
- SNMP
- Custom HTTP Decoy - You can configure it with a custom HTML template
- TELNET
- SMB Server with custom files
- FTP
- Tftp
- Web Server - Tomcat, Apache, Basic Auth
- SSH Interactive and Non-Interactive
- SMTP
- RDP Interactive and Non-Interactive
- VNC
- HONEYCOMB (To capture events from Honey Docs)
- ICS / SCADA Decoys - Modbus and S7COMM
Client Decoys
- NBNS Decoy
- MITM Decoy
- SSDP Client
- EmailClient
BreadCrumbs
- Honey Docs
- HoneyHash - Injects creds into memory
- Kerberoast Honey Account

Application snapshots

screenshot 2021 10 04 at 08 33 53 dejavu v13 releases open source deception framework • penetration testing
screenshot 2021 10 04 at 08 34 02 dejavu v13 releases open source deception framework • penetration testing