So the CIF bit only works if you’re contributing to the STINGAR project, which is restricted to education institutions only at the moment. :-/
OR if you run your own CIF instance for collecting data, but that would likely be overkill for a single instance. If it’s just a single CHN server, I would configure the logging and then pull the logs off somewhere convenient
So our concept when we architected this was basically:
The biggest difference is the granularity of data: with the CHN logs, you can see username/password attempts, commands run, etc, while with the CIF data it’s basically a summary: this IP/URL/hash, this time, this honeypot type
@mce-reggie Hi! We appreciate the feedback!
Honestly the email alerts aspect is something that was in the original MHN (ModernHoneyNetwork) code that we forked, and as we don’t use that option we likely broke it at some point. I’m not even sure what would trigger and email, but I’ll take alook at the code and see what might pop up
Unfortunately only in English. :(