DejaVu is an open source Deception Framework code which can be used to deploy packages to a system's infrastructure.
The log control panel and notices displays detailed information about the alerts that are generated and can be further configured on how to handle them.
One of the major advantages of DejaVu is that it uses a single platform, where you can develop skills on different VLANS, manage them or simply monitor them.
Contents
hide
Architecture
Decoy Types
- Server Decoys
- MYSQL
- SNMP
- Custom HTTP Decoy - You can configure it with a custom HTML template
- TELNET
- SMB Server with custom files
- FTP
- Tftp
- Web Server - Tomcat, Apache, Basic Auth
- SSH interactive and Non-Interactive
- SMTP
- RDP Interactive and Non-Interactive
- VNC
- HONEYCOMB (To capture events from Honey Docs)
- ICS / SCADA Decoys - Modbus and S7COMM
- Client Decoys
- NBNS Decoy
- MITM Decoy
- SSDP Client
- EmailClient
- BreadCrumbs
- Honey Docs
- HoneyHash - Injects creds into memory
- Kerberoast Honey Account
Application snapshots
You can download the program from here.